linux lesson (repaired)
TRANSCRIPT
L I n u x a d m i n i s t r a t o r
Page 1
Chapter 1 LINUX BASIC
មនុនងិធ្វើការដំធ ើង Linux ធយើងររវយលពី់ File System របស់វាសិន។ធរើ Linux នងិwindows អាចដំធ ើងជាមួយគ្ននបានដដលរធឹេ?
ចធំ ោះ windows នងិ Linux ធយើងមិនអាចដំធ ើងជាមួយគ្ននបានធេពីធរ ោះវាមានបធច េកវេិាកនុងការរគបរ់គងFile System ។
ចធំ ោះwindow មានររធភេ Files System ជា Fat ,NTFS..
ចធំ ោះ Linux វាមានររធភេ Files System ជាext2 ,ext3, ext4..។
1.1ការដំឡ ើងប្រពន័្ធ Linux (Debian )
មនុនងិធ្វើការដំធ ើងធយើងររូវសិកាដសវងយលថ់ាធរើ Computer វាធ្វើការយ៉ាងដូចធមេចធដើមបីអាចដំធ ើងររព័ន ធដំធ ើ ការបាន។
កនុងចធំោម OS ដដលធររើធលើពិភពធោក OS Linux គជឺា OS មួយដដលមានការធពញនយិមធររើរាស់យ៉ាងេលំូេោូយដដលវាមានគ ុសមបរេដូិចជា
១-Free Licence
២ -Open Source
៣-Mutitassking
៤-Muti User វាមាន៦ Terminal ដដលជា Graphic Desktop
៥-វាមានការររូំវការ Hard Ware រចូជាពពួក Windows ធ ើយវាអាចប ជ Hard Ware អស់
Power
on
Check hard
Ware
Hard Disk
Flopy Disk
CD ROM .............
L I n u x a d m i n i s t r a t o r
Page 2
លេ ធភាពធេៀរផង៕
េនទមឹនងិធ ោះផងដដរវាកម៏ានគ ុវបិរេផិងដដរ
១-កនុងករ ីមានបញ្ហា ោមួយធកើរធេបើងមិនមានររុម នុោមួយេេលួខសុររូវធ ើយ
២-វាពិបាកកនុងការរក Driver របស់ Hard Ware ៕
1.2 សំណង ់Linux
Kernel គជឺាកមមវ ិ្ រីបស់ Linux ចធំ ោះការដកដររ Kernelវាជោះឥេ ធពិលយ៉ាងខ្ល ងំធៅធលើ Linux
ដូចធនោះធ ើយបានជាធពលដំធ ើងវាសួរធអាយដាក ់ Password Kernel រធឺេ៕ ធ ើយវាកជ៏ាមជឈម ឌ លធ្វើការ Process រវាង User នងិ Hard ware ធ ើយវាកអ៏ាចធ្វើការ Update បានផងដដលធដើមីបធអាយវាស្គគល ់Hard Wareកាន ់ុ រធរចើន៕
Shell គជឺាប េុ ំ នន Command ដដលេេលួការប ជ ពី User ធដើមបីអនវុរ េនក៍ារងារអវី មួយ។វាចាបធ់ផេើមដំធ ើ ការធៅធពល User Logon ចលូ System ៕ធៅកនុង Linux មាន Shell ជាធរចើនដូចជា
CSHELL ដដល Command របសវ់ាដូចនងិ Program C ។ធៅកនុង Linux ធយើងធររើរាស ់ Base Shell
៕
USER
Shell | Application | Utility
Hard Ware
Kernet(OS)
L I n u x a d m i n i s t r a t o r
Page 3
1.3 រចនាសម្ពន័្ធរបស ់Directory Linux
-/ (System root) : គជឺា Top level នន Directory របស់ Linux ដដលវាផទុកធដាយ Directory នងិ
File ជាធរចើន៕
-/root : គជឺា Home Directory របស់ User Account root(Super User) ធររើសំរាបផ់ទុក
User Profiles នន User Account root ៕
-/Home : គជឺា Home Directory របស់ User ធរៅពី root សំរាបផ់ទុក User Profiles
របស់ User Account៕
-/lib : គជឺា Directory សំរាបផ់ទុក Library Files ដដលអនញុ្ហា រធិអាយ Soft Ware
យកធៅធររើរាស៕់
-/Usr : ផទុកធៅធដាយ Files នងិ Softជាធរចើនដដលធយើងបានដំធ ើងធលើ Linux ៕
-/Tmp : ផទុកធៅធដាយ Files បធោេ ោះអាសនន៕
-/etc : ផទុកធៅធដាយ Configuration Files ជាធរចើន(Files ASCI Text) សំរាប់ុ កដររធៅតាមររូំវការរបស់ធយើង៕
-/dev : ផទុកធដាយ Device ដដលបានភាជ បជ់ាមួយ System។ដដលធ ម្ ោះរបស់វាបានជំនសួធដាយ File។
-/bin : ជា Directory សំរាបផ់ទុក User Command
-/sbin : ជា Directory សំរាបផ់ទុក System Command
Ex: shutdown ,restart............................។
-/mnt : សំរាបផ់ទុក mount point របស់ Device Name៕
-/Proc : ផទុកព័រមានអំពី Kernetរបស ់ Linux
-/boot : ផទុក Kernel របស ់Linuxរពមទងំ Files ធដើមបី Linux អាចដំធ ើ ការបាន។
-/Var : សំរាបផ់ទុក Log File mailbox
L I n u x a d m i n i s t r a t o r
Page 4
-/User/Local : សំរាបផ់ទុក Software ធដើមបី Shari ធៅធអាយ computer ដន៏េធៅធលើ Linux៕ 1.4 ការដំឡ ើងររព័ន្ធ linux
1 I n s t a l l D e b i a n 6
Install Debian GNU/Linux 6..0
[1] Insert a disk for installation of Debian GNU/Linux 6.0 and reboot your computer. The screen of
selecting language. Choose it and go next.
[2] Select your language.
L I n u x a d m i n i s t r a t o r
Page 5
[3] Select your time-zone.
L I n u x a d m i n i s t r a t o r
Page 6
[4] Select the locale.
[5] Select your keyboard layout.
L I n u x a d m i n i s t r a t o r
Page 7
[6] Set your server's hostname you'd like to set.
[7] Set your network domain name.
L I n u x a d m i n i s t r a t o r
Page 8
[8] Set root password. If you will use root priviledge with sudo, Go next without inputing any one on here.
[9] Set a User Account. Input user's ful name on here.
L I n u x a d m i n i s t r a t o r
Page 9
[10] Set user name that is used on the system.
[11] Set user's password.
[12] Set partition layouts. This example shows to use entire disk and set LVM.
[13] Select a disk to configure partitions.
L I n u x a d m i n i s t r a t o r
Page 10
[14] Select partition layouts. This example shows to set only one partition (= /).
[15] Answer 'Yes' If it's OK all.
[16] Partitions you set are listed all. If it's OK all, Select 'Finish' and go next.
L I n u x a d m i n i s t r a t o r
Page 11
[17] Answer 'Yes' if it's OK to change the disk for new partiton layouts.
[18] If you'd like to use another CD/DVD media for installation, Answer 'Yes', or it's 'No' if not.
L I n u x a d m i n i s t r a t o r
Page 12
[19] Set mirror site. If you'd like to use it, Answer 'Yes'.
[20] Select a country that mirror site is placed you'd like to use.
L I n u x a d m i n i s t r a t o r
Page 13
[21] Select a mirror site.
[22] If you use proxy, set it. If not, go next without inputing any one.
L I n u x a d m i n i s t r a t o r
Page 14
[23] Participate in the package usage survey positively.
[24] Select Software group you'd like to install. Configure minimum settings at the first. Go next without
checking any boxes.
[25] This is Grub settings section. Generally, answer 'Yes'.
L I n u x a d m i n i s t r a t o r
Page 15
[26] Instalattion just finished. Eject the disk and Continue, then the system will reboot automatically.
[27] Login prompt is shown as follows after booting the system. Login with a user you set during
installation or root.
L I n u x a d m i n i s t r a t o r
Page 16
Chapter 2 Using Command Line
2.1-ការបឡងកើត Directory
Syntax: #mkdir [Path]<DirectoryName>
ចោំ:ំ Directory មិនអាចធររើ Space បានធេ។ ធ ើយមិនគរួធររើ សញ្ហា ពិធសសធ ើយ ។
- Path :គជឺាេតីាងំរបស់ុដលធយើងចងប់ធងក ើរ Directory។
- រវាង Command នងិ Parameter ររូវមាន Space យ៉ាងរចិមួយ។
- Directory គជឺាធ ម្ ោះរបស់ Directory ដដលធយើងចងប់ធងក ើរ។
ឧទ រ ៍ : ធយើងចងប់ធងក ើរ Directory ធ ម្ ោះ BBU ធៅកនុង /home
#mkdir /home/BBU
ធដើមបីបងាា ញេតីាងំដដលធយើងកពំងុធៅធយើងធររើ Command
#pwd
/ etc mnt boot mnt home
L I n u x a d m i n i s t r a t o r
Page 17
Directory ដដលធយើងកពំងុធៅធយើងធៅថា Active Directory ។
Command សំរាបធ់មើលថាធរើធៅកនុង Directory មាន Files នងិ Directory អវីខ លោះធយើងធររើ Command #ls
ដដលមាន Systax: #ls [Path]<Directory Name>
Command សំរាប ់Change Active Directoryធយើងធររើ Command #cd
ដដលមានរូបមនេ: #cd [Path]<Directory Name>
Command សំរាបថ់យធរកាយមួយDirectory គមឺាន
Syntacx:#cd ..
ឧទ រ ៍ #cd /mnt/user/data
ធគ្នលបំ ងធយើងចងច់លូររឹម #/mnt/user
ធយើងររូវវាយ #cd /mnt/user/data ..
Note: ករ ីធយើងចងរ់ដូ រធៅកាន ់ Home Directory របស់ User ដដលកពំងុ Logon ធយើងធររើ
Command #cd ~
2.1.1ការបឡងកើត File
Syntax: #cat > [Path]<FileName>
ចធំ ោះរូបមនេធនោះករ ីធយើងបធងក ើរ File ដរធបើ File ធ ោះមាននយ័របស់ File។ ករ ីសរធសចប់ររូវចចុ Ctrl+d ធដើមបី Save ។
L I n u x a d m i n i s t r a t o r
Page 18
ធបើធយើងចងប់ធងក ើរ File ដរគ្នម នអរថនយ័ភាល មៗធយើងធររើរូបមនេ
Syntax:#touch [Path]<FileName>
ធបើចងដ់ាកអ់រថនយ័ធអាយ File ធយើងធររើរូបមនេ
Syntax:#echo ―StringAdd‖ >> [Path]<FileName>
ធបើធយើងចង ់ Replace អរថនយ័ចាស់ធយើងធររើរូបមនេ
Syntax: #echo ―StringReplace‖ > [Path]<FileName>
ធបើចងធ់មើលអរថនយ័របស់ File ធយើងធររើរូបមនេ
Syntax:#cat [Path]<FileName>
មា៉ាងធេៀរធយើងធររើ
Syntax:#vi [Path]<FileName>
រូបមនេធនោះសំរាបធ់ររើធដើមបីបធងក ើរ FileនងិEdit File។
2.1.2 ការលបុ Directory ន្ិង File
Syntax: #rmdir [Path]<Directory name>
ចធំ ោះរូបមនេធនោះអាចលបុបានដរ Directory ោដដល Emptyដរប៉ាធុោណ ោះ។
រូបមនេសំរាបល់បុ Directory ដដលមានផទុក SubDirectory
Sysntax: #rm -r –f [Path]<FileName>
-r រឺ-R សំរាបល់បុ Directory នងិ លបុFile
L I n u x a d m i n i s t r a t o r
Page 19
-f សំរាបប់ងខ ំ
សំរាបល់បុ Directoryោដដលផទុកធដាយ SubDirectory នងិ Files៕
រូបមនេសំរាបល់បុ File
ចធំ ោះ Flagពីធយើងអាចដាកប់ញ្េូ លគ្ននបាន
#rm –rf /home/data
Syntax:#rm [Path]<FileName>
ករ ីធនោះវាសួរ Yes/No ធដើមបីក ុធំអាយសួរធររើ-f ។
ចោំ ំ *.* សំរាបល់បុ Fileទងំអស់
*.txt សំរាបល់បុ File ទងំអស់ុដលមាន (.txt)
???.*សំរាបល់បុFileដដលមានអកស៣ខ ទងម់ខុ
ធដើមបីធមើល Commandដដលធយើងបានធររើធយើងវាយ
#history
ធពលធ ោះធយើងនងិេេលួបាននវូ ID របស ់Command ទងំអស់រពមទងំធ ម្ ោះរបស់Command។
ID របស ់ Command វានងិធចញតាម Command Name ដដលធយើងធររើមនុធគ។ ID របស់ Command Name ធ ោះធយើងអាចយកមកធររើដូនជាធ ម្ ោះរបស់ Command Name ធដាយរគ្នន ់ុ រដាកស់ញ្ហា (!) ពីមខុ ID ៕
ធបើចងធ់ររើ Commandចងុធរកាយធយើងរគ្នន ់ុ រវាយ!!។
L I n u x a d m i n i s t r a t o r
Page 20
ធដើមបីលបុ Commandដដលធយើងធ្លល បធ់ររើធយើងវាយ
#history -c
ធដើមបីសួរពីរធបៀបធររើ Command ធយើងធររើ
#man CommandName
ធដើមបីចាកធចញពីអរថនយ័របស់ Command name ធយើងចចុ Ctrl+z
Command គជឺាឃ្លល បញ្ហជ ដដល User បញ្ហជ ធៅធលើ OS ធដើមបីអនវុរ េនក៏ារងារោមួយ ។Command ទងំអស់ផទុក Shell។
2.1.3 ការឡម្ើល Directory ន្ិង Files
ធដើមបីធមើល Directoryនងិ Filesធយើងធររើ Command ls
Syntax: #ls [option] <Path>
ធដើមបីធមើលថាធរើធៅកនុង Directory ធ ោះមាន Files នងិ Directory អវីខ លោះ
ធយើងធររើ Command
#ls –l [Directoryname]
ធដើមបី Copy Fileធយើងធររើ Command cp ដដលមាន Syntaxដូចខ្ងធរកាម:
#cp [path]<Source File> [path]<Definition file>
-Definition File មានកប៏ានអរក់ប៏ានដរធបើមានធ ោះវានងិដូធ ម្ ោះ File ដរអរថនយ័ធៅដ ៏ុ ដល។
ធដើមបី Copy Directoryធយើងធររើ Command cp ដដលមាន Syntaxដូចខ្ងធរកាម:
L I n u x a d m i n i s t r a t o r
Page 21
#cp -r [path]<directory name> [path]<directory name>
Command សំរាប ់Move Files ធយើងធររើ Command mvដដលមាន Syntax: ដូចខ្ងធរកាម:
#mv [Path]<SourcFile> [Path]<DefinitionFile >
2.1.4 ការឡប្រើប្ាស ់Command vi
Creating and editing a text file with vi
vi (pronounced "vee eye") is really the only editor that comes with almost every Unix-like operating system,
and Debian is no exception. vi was originally written at the University of California at Berkeley. The editor's
name is short for "visual", referring to the fact that vi provides a visual display of the text file; this was once
considered a unique feature, giving you an idea how old the program is.
Vi “Vee Eye” វាគឺជា editer តែមួយគែ់តដលBuild មកជាមួយរាល់ Operation System Unix ទំងអស់។ ឡ ើយ Debian ក៏មិន្បាន្ឡលើកតលងតដល។ VIគឺរែូវបាន្រឡងកើែឡ ើងឡៅសាកលវឡិាល័យនន្រដឌ Californai តដលមាន្ឡ ម្ ោះថា Berkeley ។ vi គឺឡេញពីពាកយកាែ់ “visual” តដលតអែកឡលើការរង្ហា ញជាអកសរនន្Text File។
vi is somewhat hard to get used to, but has many powerful features. In general, we suggest that a new user
use Emacs for daily tasks such as programming. However, vi is sometimes more convenient or the only
available editor; it is also a much smaller file to download.
The following discussion of vi should also apply to vi variants such as elvis and vim.
8.3.1 Creating a file
1. vi testfile
In your home directory, invoke vi by typing vi followed by the name of the file you wish to create.
You will see a screen with a column of tildes (~) along the left side. vi is now in command mode.
Anything you type will be understood as a command, not as content to add to the file. In order to
input text, you must type a command.
2. i
The two basic input commands are i, which means "insert the text I'm about to type to the left of the
cursor", and a, which means "append the text I'm about to type to the right of the cursor". Since you
L I n u x a d m i n i s t r a t o r
Page 22
are at the beginning of an empty file, either of these would work. We picked i arbitrarily.
3. Type in some text; here's a profound statement from philosopher Charles Sanders Peirce, if you can't
think of your own: 4. And what, then, is belief? It is the demi-cadence 5. which closes a musical phrase in the symphony of our 6. intellectual life. We have seen that it has just 7. three properties: First, it is something that we are 8. aware of; second, it appeases the irritation of doubt; 9. and, third, it involves the establishment in our 10. nature of a rule of action, or, say for short, a
11. habit.
Press RET after each line, since vi will not move to the next line automatically; when you finish
typing, press the ESC key to leave insert or append mode and return to command mode.
4. :wq
If you've done everything correctly, when you type this command it should appear at the bottom of
your screen, below all the ~ characters. The : tells vi you're about to give a series of commands; the
w means to write the file you've just typed in --- in most new programs this is called "save" --- and the
q means to quit vi. So you should be back at the shell prompt.
5. cat testfile
cat will display the file you typed on the screen.
Don't remove testfile, we'll use it in the next tutorial section.
As you use vi, always remember that pressing ESC will return you to command mode. So if you get
confused, press ESC a couple times and start over.
vi has an annoying tendency to beep whenever you do something you aren't supposed to, like type an
unknown command; don't be alarmed by this.
8.3.2 Editing an existing file
To use vi, you only need to read Moving around in a file, Section 8.3.2.1 and Deleting text, Section 8.3.2.2.
Later sections explain advanced features, but they are not strictly necessary, though often more efficient and
less tedious.
8.3.2.1 Moving around in a file
To move around in a file, Debian's vi allows you to use the arrow keys. The traditional keys also work,
however; they are h for left, j for down, k for up, and l for right. These keys were chosen because they are
adjacent on on the home row of the keyboard, and thus easy to type. Many people use them instead of the
L I n u x a d m i n i s t r a t o r
Page 23
arrow keys since they're faster to reach with your fingers.
1. vi testfile
Open the file you created earlier with vi. You should see the text you typed before.
2. Move around the file with the arrow keys or the hjkl keys. If you try to move to far in any
direction, vi will beep and refuse to do so; if you want to put text there, you have to use an insertion
command like i or a.
3. :q
Exit vi.
8.3.2.2 Deleting text
1. vi testfile
Open your practice file again.
2. dd
The dd command deletes a line; the top line of the file should be gone now.
3. x
x deletes a single character; the first letter of the second line will be erased. Delete and backspace
don't work in vi, for historical reasons[13]. Some vi variants, such as vim will let you use backspace
and delete.
4. 10x
If you type a number before a command, it will repeat the command that many times. So this will
delete 10 characters.
5. 2dd
You can use a number with the dd command as well, deleting two lines.
6. :q
This will cause an error, because you've changed the file but haven't saved yet. There are two ways to
avoid this; you can :wq, thus writing the file as you quit, or you can quit without saving:
7. :q!
With an exclamation point, you tell vi that you really mean it, and it should quit even though the file
L I n u x a d m i n i s t r a t o r
Page 24
isn't saved. If you use :q! your deletions will not be saved to testfile; if you use :wq, they will
be.
8. cat testfile
Back at the shell prompt, view testfile. It should be shorter now, if you used :wq, or be
unchanged if you used :q!.
:q! is an excellent command to remember, because you can use it to bail out if you get hopelessly confused
and feel you've ruined the file you were editing. Just press ESC a few times to be sure you're in command
mode and then type :q!. This is guaranteed to get you out of vi with no damage done.
You now know everything you need to do basic editing; insertion, deletion, saving, and quitting. The
following sections describe useful commands for doing things faster; you can skip over them if you like.
8.3.2.3 Sophisticated movement
There are many motion commands, here's a quick summary:
w
Move to the start of the next word
e
Move to the end of the next word
E
Move to the end of the next word before a space
b
Move to the start of the previous word
0 (zero)
Move to the start of the line
^
Move to the first word of the current line
$
Move to the end of the line
RET
L I n u x a d m i n i s t r a t o r
Page 25
Move to the start of the next line
-
Move to the start of the previous line
G
Move to the end of the file
1G
Move to the start of the file
nG
Move to line number n
C-G
Display the current line number
H
Top line of the screen
M
Middle line of the screen
L
Bottom of the screen
n|
Move cursor to column n
The screen will automatically scroll when the cursor reaches either the top or the bottom of the screen. There
are alternative commands which can control scrolling the text.
C-f
Scroll forward a screen
C-b
Scroll backward a screen
C-d
L I n u x a d m i n i s t r a t o r
Page 26
Scroll down half a screen
C-u
Scroll down half a screen
8.3.2.4 Repeating commands
As mentioned above you can often prefix a command with a number to repeat that command multiple times.
For example, the l key moves left; 10l moves you left 10 positions to the left.
If you wanted to enter a number of spaces in front of the some text you could use a number with the insert
command. Enter the number n then i followed by SPACE and ESC. You should get n spaces.
The commands that deal with lines use a number to refer to line numbers. The G is a good example; if you
preface it with a number it will go to that line.
8.3.2.5 Advanced reference
This section gives a more comprehensive list of commands you can use. It is just a reference; if you want, try
the commands out to see what they do.
Insertion commands:
a
Append to the right of the cursor
A
Append at the end of the line
i
Insert text to the left of the cursor
I
Insert text to the left of the first non-blank character on current line
o
Open a new line below the current line and insert text
O
L I n u x a d m i n i s t r a t o r
Page 27
Open a new line above the current line and insert text
Deletion commands:
x
Delete the character under the cursor
dw
Delete from the current position to the end of the word
dd
Delete the current line.
D
Delete from the current position to the end of the line
Commands in combination can be more powerful. In particular, d followed by a motion command deletes
from the cursor to wherever you asked to move. Some examples:
dnw
Deletes n words (ndw works too)
dG
Delete from the current position to the end of the file
d1G
Delete from the current postion to the start of the file
d$
Delete from current postion to the end of the line (same as D)
dn$
Delete from current line the end of the nth line
Undo commands:
u
Undo the last command
U
L I n u x a d m i n i s t r a t o r
Page 28
Undo all change to the current line
:e!
"Edit again". Like quitting with :q! and restarting --- returns you to the last time you did a :w to
save.
You can undo an undo, so uu results in an undone undo, or no change.
Replacement commands:
rc
Replace the character under the cursor with c
R
Overwrites text
cw
Changes the current word
c$
Changes text from current position to end of the line
cnw
Changes next n words.(same as ncw)
cn$
Changes to the end of the nth line
C
Changes to the end of the line (same as c$)
cc
Changes the current line
s
Substitutes text you type for the current character
ns
L I n u x a d m i n i s t r a t o r
Page 29
Substitutes text you type for the next n characters
The commands in the above list which allow you to enter more than a single character of text have to be
exited with the ESC key, returning you to command mode.
Cut and paste involves first yanking (cutting or copying) some text and placing it in a buffer (or "clipboard");
then moving to the desired new location; then pasting the text.
To cut text use the y command and its variants:
yy
Yank a copy of the current line
nyy
Yank the next n lines
yw
Yank a word
ynw
Yank n words
y$
Yank the text between the cursor and the end of the line
Paste commands:
p
Paste to the right of the cursor
P
Paste to the left of the cursor
nP
Paste n copies to the left of the cursor
When using vi within an xterm or using a variant of vi that supports X, you can also use the mouse to copy
text. See The X Window System, Chapter 10 for how to copy and paste in X; be sure you're in insert mode
when you paste, or the pasted text will be interpreted as a command.
When you delete, the deleted text is copied to the buffer (clipboard); you can then use the paste commands.
L I n u x a d m i n i s t r a t o r
Page 30
This allows you to cut-and-paste, while the y commands result in copy-and-paste.
vi has commands to search for text. You can also use these as movement commands, if you want to move to
a particular word or character.
The simplest search commands look for characters.
fc
Find the next character c to the right of or below the current position
Fc
Find the next character c to the left of or above the current position
tc
Move right to character before the next c.
Tc
Move left to the character following the preceding c.
;
Repeats the last character search command
,
Same as ; but reverses the direction of the original command.
If the character you were searching for was not found, vi will beep or give some other sort of signal. vi
allows you to search for any text, not just a character.
/text
Searches right and down for the next occurence of text.
?text
Searches left and up for the next occurance of text.
n
Repeat the last/ or ? command
N
Repeats the last / or ? in the reverse direction
L I n u x a d m i n i s t r a t o r
Page 31
When using the / or ? commands a line will be cleared along the bottom of the screen. You enter the text to
search for followed by RET.
OS Linux កដ៏ូចជា OS ដ ៏ុ េធដើមបីធររើរាស់បានធយើងររូវ Login (Username + password) User
Account កនុងLinuxចាបំាចរ់រូវមាន Password។
ធ ើយ User Account មួយៗមានសិេ ធមិនដូចគ្នន ធេវាអាស្ស័យធលើអនករគបរ់គងជាអនកក ំរសិ់េ ធ។
ធៅកនុង Linux User ដចកធចញជាពីគ ឺ
១User Build in ធកើរធពលធយើងដំធ ើង Linux
២User ដដលធយើងបធងក ើរធ ើងធដាយUser ដដលមានសិេ ធបធងក ើរ(root)៕
User Build in ដចកធចញជាពីគ ឺ
១Supper User ធៅថា (root (UID=0)
២System User (UID 1->99)
System User មានជាធរចើនធៅកនុង Linux ដរធយើងមិនអាចយកវាមក Logon បានធេ។
ធៅធពលដដលUser normal ររូវបានបធងក ើរវាេេលួបាន(UID>=500) ធ ើយ System linuxកប៏ានបធងក ើរ Home Directory ដដលមានធ ម្ ោះដូចនងិ UserNameធ ោះកនុង Directory កនុងHome ធដើមបីផទុក
User Profiles ដន User Account ធ ោះ។
ធ ើយធពលធ ោះ System Linux កប៏ានបធងក ើរ Private group មួយដដលGroup ធ ោះមានធ ម្ ោះដូចគ្នន ធៅនងិ User Name ធ ើយUser account ដដលបានបធងក ើរធ ោះជាសមាជិកធដាយសវយ័ររវរេ។ិ
2.2. Add a user
2.2.1 Add a user for system administration
L I n u x a d m i n i s t r a t o r
Page 32
2.2.2 Try to switch to a user that was added above
2.2.3 Make a user (it's 'fedora' in this example) be only a user who can
switch to root as an administration user
2.2.4 Configure that forwarding emails for root to administration user you
set above
L I n u x a d m i n i s t r a t o r
Page 33
ធៅកនុង Linux ព័រម៌ាន User ទងំអស់គរឺរូវបានផទុកកនុង File មួយដដលមានធ ម្ ោះវា Password ធៅកនុង File ធនោះដចកធចញជាប ទ រ់ុ ដលប ទ រន់មួីយៗគជឺាព័រម៌ាននន User Account មួយ។
ធ ើយធយើងកអ៏ាចដកដររព័រម៌ាននន User Account ធនោះបានដដរ។
ដូចធនោះ File Passwd គជឺា File configuration របស់ User account។
ធៅកនុងប ទ រន់មួីយៗដចកធចញជា 7 Columដដលដបងដចកធដាយសញ្ហា (:)។
-Column េ១ីគជឺា User Name នន User Account ធ ោះ។
-Column េ២ីគជឺា Password ននUser Account ធ ោះរោំងធដាយអកស(x) ធ ើធយព័រម៍ានននUser
Account នមួីយៗផទុកកនុង File /etc/shadow
-Columnេ៣ីគជឺា User ID របស់ User Account
-Column េ៤ីគជឺា ID របស់Group ដដលUser Account ជាសមាជិក
-Column េ៥ីគជឺាFull Name ននUser Account ធ ោះ
-Column េ៦ីគជឺាេតីាងំននUser Account ធ ោះ
-Column េ៧ីគជឺាេតីាងំShell ននUser Account ធ ោះ
ធយើងដឹងធ ើយថាFile Shadow គជឺាFile ផទុកព័រម៍ានរបស់User Account ។ធ ើយមួយប ទ រ់
L I n u x a d m i n i s t r a t o r
Page 34
គជឺាព័រម៍ានរបស ់User Account មួយដដលដចកជា៨Column គឺ
-Column េ១ី គជឺា User Name នន User Account ដដលមានធ ម្ ោះដូចធៅនងិ User Name នន User Account
-Column េ២ីគជឺា Password ននUser Account ននUser Account ធ ោះដដលមានលកខ ោះEncript ។
ធបើធមើលធៅកនុងShadow មានសញ្ហា (!!)ធ ោះបញ្ហជ កថ់ាគ្នម នPassword ដរធបើមាននមិិរេសញ្ហា (*)
ធ ោះបញ្ហជ កថ់ាUser Account ធ ោះររូវបានDisable ជាបធោេ ោះអាសនន។
-Column េ៣ី គជឺាចនំនួនថៃដដល User Account ធ ោះបានរេូរ Password ជាធលើកចងុធរកាយធដាយចាបគ់រិពីនថៃេ ី01/10/1970។
-Column េ៤ី គជឺា Minimumte password Age គរិជានថៃររសិនជាធសមើ (០)មាននយ័ថា User Account
ធ ោះអាចរេូរ Password បានធដាយធសរី។
-Column េ៥ីគជឺាMaxcimumte Password Age គរិជានថៃ។
-Column េ៦ី គជឺាចនំនួនថៃ នងិផេលព់័រម៍ាន Wanning មនុ Password Expire ជាេធូៅវាររូវរចូជាColumn េ៥ី។
-Column េ៧ីគជឺាចនំនួនថៃដដល User Account នងិDisable ប ទ បពី់ Password ររូវ Expire ។
-Column េ៨ីគជឺាចនំនួនថៃដដលUser Account ធ ោះររូវបានDisableដដលUser Account ធ ោះររូវបានចាបគ់រិពីនថៃ01/01/1970។
ធដើមបីលបុ User Account ធយើងធររើ userdel UserName ដរ Command ធនោះរគ្នន ់ុ រលបុ User
Account ដរប៉ាធុោណ ោះមិនបានលបុHome Directory របស់ User Account ធ ោះធេ។
L I n u x a d m i n i s t r a t o r
Page 35
ធដើមបីលបុ User Accountលបុទងំ Home Directory ធយើងធររើ Command
#userdel -r UserName
ធយើងអាចDisable User Account តាមរធបៀបមួយចនំនួដូចខ្ងធរកាម
១»ធររើ Command
#passwd -l Username Disable
#passwd -u Username Enable
#usermod -L UserName Disable
#usermod -U UserName Enable
Group
ធៅកនុង Linux Groupដចកធចញជា២ររធភេគ ឺ
-Group Build in នងិPrivade group
១»Group Build in គជឺាGroup ដដលបានបធងក ើរធ ើងធដាយសវ័យររវរេធិពលធយើងរធំ ើងLinux
២»Private Group គជឺា Group ដដលធកើរធ ើងធដាយស្គធគបធងក ើរធ ើយបធងក ើរធដាយ User ដដលមានសិេ ធបធងក ើរធ ើយមាន ID>=500
ធដើមបីបធងក ើរ Group ធយើងធររើ Command
#groupadd groupName
L I n u x a d m i n i s t r a t o r
Page 36
Eg:
#groupadd itbbu ធបើវាដំបូងវាេេលួបាន ID=500
ធៅកនុង Linux ធដើមបីធអាយដឹងថាមាន Group អវីខ លោះធយើងចលូធមើលកនុង /etc/group។ធៅកនងុ File ធនោះវាដចកធចញជាប ទ រ់ុ ដលប ទ រមួ់យជាព័រម៍ានរបស់ User Account មួយ។
ធដើមបីAdd User Account ោមួយចលូ Group ធយើងធររើ Command
#gpasswd -a UserName groupName
Eg #gpasswd -a bbu linux
ធដើមបីលបុ User Account ោមួយធចញពី Groupោមួយធយើងធររើ Command
#gpasswd -d UserName GroupName
ធដើមបីផេលសិ់េ ធធអាយUser Account ោមួយរគបរ់គង Group ធយើងធររើ Command
#gpasswd -A UserName GroupName
ធដើមបីលបុ Group ោមួយធយើងធររើ Command
#groupdel GroupName
L I n u x a d m i n i s t r a t o r
Page 37
Chapter 3 Permission
3.1 ឡមើលFile និ្ង Directory ពីសិទ្ធនិ្ង Ownner
ធៅកនុង Linux ធដើមបីធអាយដឹងថាUser Account រកឺ ៏ Group ោមួយមានសិេ ធធ្វើអវីខ លោះធៅធលើ File រឺDirectory ធយើងធររើCommand
#ls -l [path]<File Name>
Eg
#ls -l /etc/passwd
#ls -l /etc
#ls -l
Eg
#ls -l \etc\passwd
-rw-r—r-- | L | root | root | 2068 2010-10-10 10:29 | \etc\passwd
----1---- --2-- ---3--- --4--- -------------5-------------------- ---------6---------
1.រាបធ់អាយដឹងថាធរើវាជា File រឺDirectory នងិមានសិេ ធអវីខ លោះ
2.គជឺាLink File
3.គជឺា Owner User របស់File រឺ Directory ធ ោះ Owner User ជាេធូៅគជឺាអនកដដលបធងក ើរ File រឺ
L I n u x a d m i n i s t r a t o r
Page 38
Directory ធ ោះកប៏៉ាដុន េធយើងកអ៏ាចរេូ រ Owner User ធ ោះបានដដរ។
4. គជឺា Group របស់File រឺDirectory ធ ោះ ប៉ាដុន េធយើងកអ៏ាចរេូ រ Groupធ ោះបានដដរ។
5.គជឺាកាលបរធិច េេចងុធរកាយដដលធយើងបានដកដររ File រឺDirectory ធ ោះ
6.រាបធ់អាយដឹងពីធ ម្ ោះ File រឺDirectory ធ ោះ។
Column 1
- /rw- /r— /r—
--1.1-- --1.2--- --1.3-- --1.4--
1.1ររសិនធបើជាសញ្ហា ដកបញ្ហជ កថ់ាជាFileដរធបើជាអកស d បញ្ហជ កថ់ាជា Directory
1.2 គជឺាសិេ ធរបស់ Owner user ធៅធលើFile រឺDirectory ធ ោះ
r= read ,w= Write ,x=Execute , ដក(-) =គ្នម នសិេ ធ
1.3 គជឺា Permissionរបស់ Group នន FileរឺDirectory ធ ោះ
1.4គជឺាសិេ ធរបស ់User ដន៏េដដលមិនដមនជា Owner នងិមិនដមនជាសមាជិករបស់ Group។
3.2 Change Ownner ររស់ File ឬDirectory
ធដើមបី Change Owner របស ់File ឬDirectory ធយើងធររើCommand
#chown UserName [Path]<File ឬDirectory>
L I n u x a d m i n i s t r a t o r
Page 39
3.3 Change Group ររស់ File ឬDirectory
ធដើមបីChange Group របសF់ile ឬDirectoryធយើងធររើ
#chgrp NewGroup [Path]<File ឬDirectory>
ធយើងអាចធ្វើការដកដររសិេ ធរបស់ Owner , Group នន File ឬ Directory ធ ោះធដាយធររើ Command chmod ។
បា៉ារា៉ា ដម៉ារដដលធររើជាមួយchmod មានដូចជា
u: រោំងធអាយOwner User
g: រោំងធអាយGroup
o: រោំងធអាយ Other user
a: រោំងធអាយ all User (u+g+o)
+: សំរាបប់ដនថមសិេ ធAdd Permission
-: សំរាបដ់កសិេ ធRemove Permission
=: សំរាបក់ ំរធ់ ើងវញិនវូសិេ ធReset Permission
#chmod g+w [path]<File or DirectoryName> បដនថមសិេ ធWrite ធអាយgroup
#chmod u+x ---- បដនថមសិេ ធExecute ធអាយ Owner user
#chmod ug+xr ---- បដនថមសិេ ធ Write នងិ Execute ធអាយOwner user នងិGroup
#chmod ug-xr ---- ដកសិេ ធ Write នងិ Execute ពីOwner user នងិGroup
L I n u x a d m i n i s t r a t o r
Page 40
#chmod u=xr ---- ដកដររសិេ ធធ ើងវញិនវូ Write នងិ Execute ធអាយOwner user
ធយើងកអ៏ាចធ្វើការផេលសិ់េ ធធដាយការធររើរាស់ Command chmod ជាមួយធលខដដលមាន
Syntax ដូចខ្ងធរកាម
#chmod NN1N2 [Path]<File Or Directory>
r=4 w=2 x=1 -=0(គ្នម នសិេ ធ) N ជាធលខរោំងធអាយសិេ ធរបស់ Owner ធៅធលើ File ឬDirectory
N1 ធលខរោំងធអាយសិេ ធរបស់ Group ធៅធលើ File ឬDirectory
N2 ធលខរោំងធអាយសិេ ធរបស់ Other User ធៅធលើ File ឬDirectory
ឧទ រ ៍ #chmod 753 ----- 4+2+1 4+1 1+2
Owner user មានសិេ ធRead, WriteនងិExecute
Group មានសិេ ធRead នងិExecute
Other Userមានសិេ ធWrite នងិExecute
ធយើងអាចធ្វើការ Change owner user របស់ FileឬDirectory ធដាយធររើ Command chmod
#chmod NewUser [Path]<File or Directory>
Note:
N,N1,N2,…គឺជាអលរូកនន្ Permission ទំងអស់
ជា Defual N=0
L I n u x a d m i n i s t r a t o r
Page 41
Note: NewUser មានស្ស្គបក់នុង System។
ធដើមបី Change Group របស់ File ឬDirectory ធយើងធររើ Command
#chgrg NewGroup [Path]<File ឬDirectory>
Note: NewGroup មានស្ស្គបក់នុង System។
L I n u x a d m i n i s t r a t o r
Page 42
Chapter 4
4.1 ការអតល់សិទ្ធឡោយ User
តាម្មមតាការបធងក ើរ User ធយើងធររើ Command useradd គវឺាមិនមានសិេ ធក នុងការរគបរ់គងធ ោះធេធដើមបីផេលសិ់េ ធធអាយ UserAccountធ ោះមានសិេ ធរគបរ់គងធយើងររូវធៅ Configure File មួយដដលមានធ ម្ ោះថា Sudoers ដដលមានេតីាងំ/etc/sudoers ។
Syntax:
username/groupname servername = (user can be run as) command
note:
ធៅកនុង Linux User ធ ើយនងិ Groupមានធ ម្ ោះដូចគ្នន ។ដូធចាន ោះធដើមបីបញ្ហជ កថ់ា Group ធយើងររូវដាកស់ញ្ហា %ពីមខុ។
4.2 ការ Add user ឡ ើយនិ្ង Group linux មាន្សិទ្ធដូេ root
Add user dara ធ ើយនងិ Group linux មានសិេ ធដូច root
dara,%linux ALL = (ALL) ALL
peter,%office ALL = /sbin/, /usr/sbin, /usr/share/man/man1/ls.1.gz, /usr/share/man/man1p/ls.1p.gz
មាននយ័ថាាៈUser peterនងិGroupoffice មានសិេ ធធររើរាស់ Command ទងំអស់ុដលផទុកកនុង/sbin/, /usr/sbin, /usr/share/man/man1/ls.1.gz, /usr/share/man/man1p/ls.1p.gz
ចោំាំៈចធំ ោះការបិេ Command ធយើងធរាោះសញ្ហា (!) ពីមខុ។
4.3 ការរិទ្ Command
ធបើធយើងចងបិ់េ Command ដរមួយ ឬ ធរចើនធ ោះររូវបញ្ហជ កេ់តីាងំរបស់ Command នងិ ធ ម្ ោះ
L I n u x a d m i n i s t r a t o r
Page 43
របស់ Command
ឧទ រ ៍ាៈ
មិនចងធ់អាយ User peterធររើ Command ls
peter ALL = !/bin/ls …..
ALIAS
Syntax:
UserName Aliasuser GroupNameAlias = User, User1, User2, User3…
ចលូបធងក ើរ User មួយដដល Userធនោះមានសិេ ធបធងក ើរUser ធ ើយធផេើមធដាយ It។
#useradd dara
#passwd dara
password …….
confirm ……….
#vi /etc/sudoers
dara ALL = (ALL) /usr/sbin/useradd It*
L I n u x a d m i n i s t r a t o r
Page 44
Chapter 5
5.1 ការ Configure Grub File ធៅកនុង Linux Boot Loader មានពីរររធភេគ៖ឺ
1-LiLo (Linux loader)
2-Grub (grand unified boot loader)
ដដល LILoធររើជាមួយ Linux Version ទបធ ើយ Grub ធររើជាមួយ Linux Version ចាបពី់ Core 8 ធៅ។
ធដើមបីធ្វើការConfigure File របស់ Grup គធឺយើងររូវធៅ Configure File មួយដដលមានធ ម្ ោះថាgrub.conf ដដលមានេតីាងំ/etc/grub.conf
#boot=/dev/md0 ជា HDD ដដលវា Boot default=0 ជាចនំនួ េីុ ដល Boot timeoup=5 ជាចនំនួ េីុ ដល User ធ្វើការធរជើសធរសី splashimage=(hd0,0)/grub/splash.xpm.gz boot ពីHDD េមួីយននpartition េមួីយ (hd0,0) hiddentment ធបើមិនចចុ Arrowkey ធ ោះធេវានងិមិនបងាា ញធេធ ើយធយើងកអ៏ាចដាក ់Password ការ រពីការដកដររធផសងៗផងដដរ។
L I n u x a d m i n i s t r a t o r
Page 45
title Fedora(2.6.2.3)-42.fc10 ធ ម្ ោះនន OS ដដល Loadចលូ root (hd0,0) ជាេតីាងំរបស់ root kernel /vmlinux 2-2.6 ជា Kernel version របស់ Fedora ធៅកនុង Linux មាន Run Level =7 ដដលធយើងអាចក ំរធ់អាយ OS របស់ធយើងធៅធពលដំធ ើ រការដំបូងធអាយដំធ ើ រការចលូ Level ោមួយធដាយសវ័យររវរេិ។ Run Level 0(init 0) ធររើសំរាប ់shutdown computer ។ Run Level 1(init 1) គជឺា Single User modeមាននយ័ថាធៅកនុងRun Level ធនោះមានដរ Supper User(root) ដដលអាចLogon ចលូ Linux ដូចធនោះ System Linux នងិLogon ធដាយសវ័យររវរេធិដាយធររើ Account root ធដាយមិនទមទ Password ។ ធៅកនុង Run Level ធនោះធររើសំរាប់Reset Password Root នងិ Repair System មួយចនំនួ។ Run Level 2(init 2) គជឺា multiple user modeមាននយ័ថា User ជាធរចើនអាច Logon ចលូ System កប៏៉ាដុន េធៅកនុង Run Level ធនោះ Service មួយចនំនួមិនដំធ ើ រការធេ។ Run Level 3(init 3) គជឺា multiple user ធ ើយ Service ទងំអស់ដំធ ើ រការ្មមតាដរគ្នម នDesktop ធេ។ Run Level 4(init 4) មិនររូវបានធររើរាស់ធេ។ Run Level 5(init 5) គជឺា multiple user mode & graphic mode ធ ើយ Service ទងំអស់ដំធ ើ រការ្មមតា។ Run Level 6(init 6) ធររើសំរាប់ Reboot ឬRestart Computer ។ ធៅកនុង Linux ធដើមបីក ំរធ់ៅធពលដំធ ើ រការដំបូង ធយើងររូវធៅ Configure File មួយធ ម្ ោះថាinittab គធឺៅកនុង/etc/inittab ។
L I n u x a d m i n i s t r a t o r
Page 46
chapter 6
6.1 ការ ឡររើរបាស់ Disk Storage ធៅកនុង Linux ធដើមបីធររើរាស់ Disk Storage ដដលបានភាជ បល់ោុះរតាដរធយើងស្គគលធ់ ម្ ោះវាជាមនុសិន។ Hard Dish ,USB ធ ម្ ោះរបស់វាអាស្ស័យធលើInterface ដដលបានConnect ធៅកានធ់ ោះ។ ធៅកនុង Linux ធយើងអាចធររើ Command ធដើធមបើ ធមើល Drive ររសិនធបើធយើងមិនស្គគល ់Drive ទងំធ ោះ #fdisk -l ធមើលទងំអស់
#fdisk -l /dev/sda ករ ីស្គគល ់
6.2 ការ Mount Disk Storage
L I n u x a d m i n i s t r a t o r
Page 47
ប ទ បពី់ធយើងស្គគ លធ់ ម្ ោះ Device ធដើមបីអាចធររើរាសប់ានធយើងររូវ mount វាជាមនុសិនធដាយធររើ Command #mount <Device Name> <mount point> mount point គជឺា Directory មួយសំរាបផ់ទុកេនិ ននយ័របស់ Device name មាននយ័ថាប ទ បពី់ធយើងធររើរាស ់ Command mound គធឺយើងធររើរាស ់ mount point ធ ោះធដើមបីលបុ បធងក ើរ ដកដររ………… ដូចធ្វើការជាមួយ Devcie name ។ Note: mount point ជាេធូៅធយើងបធងក ើរធៅកនុង/mnt ។ ធដើមបីUnmount Device ធ ោះធយើងធររើ Command #umount <mountpoind>
Primary Master->/dev/hda
IDE1
Primary Slave ->/dev/hdb
Primary Master->/dev/hac
IDE2
Primary Slave ->/dev/hdd
Primary Master->/dev/sda
SATA1
Primary Slave ->/dev/sdb
Primary Master->/dev/sac
SATA2
Primary Slave ->/dev/sdd
L I n u x a d m i n i s t r a t o r
Page 48
6.3 ការឡមើលទំ្ ំ Disk Storage ធដើមបីធមើលថាធរើធយើងធររើអស់េ ំំប៉ា ុម នធយើងធររើ Command
#df -h <mountpiond>
Note: មនុនងិធររើរាស់ Command ធនោះបានររូវ mount វាជាមនុសិន ។
6.4 ការតេក Partition Disk Storage ធដើមបីុចក Partition ធយើងធររើCommand :
#fdisk –v <device name>
p:ធមើល Partition កនុង Device
n: បធងក ើរPartition ថម ី
d: delete partition
w: Save នវូអវី ុដលបានដកដររ
q: ចាកធចញពីកមមវ ិ្ ីfdisk
a: ក ំរ ់active partition
t: change partition system id
m: display partition ដដលមិនស្គគល ់
ប ទ បពី់ធយើងដចក Partition ធដាយធររើ fdisk ធ ើយធយើងររូវ Formart Partition ធ ោះជាមនុសិន៖
# mkfs -t [TypeFileSystem] <Partition>
ឧទ រ ៍
L I n u x a d m i n i s t r a t o r
Page 49
mkfs -t ext2 /dev/fd0
ខាងឡរកាមគឺជាររូមន្តរមូររស់ mkfs
Syntax
mkfs [ -V ] [ -t fstype ] [ fs-options ] filesys [ blocks ]
-V Produce verbose output, including all file system-specific commands that are executed.
Specifying this option more than once inhibits execution of any file system-specific
commands. This is really only useful for testing.
-t fstype Specifies the type of file system to be built. If not specified, the default file system type
(currently ext2) is used.
fs-options File system-specific options to be passed to the real file system builder. Although not
guaranteed, the following options are supported by most file system builders.
-c Check the device for bad blocks before building the file system.
-l Read the bad blocks list from filename
-v Produce verbose output.
Examples
mkfs -t ext2 /dev/fd0
The above example would create an ext2 filesystem on a floppy diskette in the first floppy drive.
L I n u x a d m i n i s t r a t o r
Page 50
Chapter 7 ការដំធ ើងSoftWare
7.1 ការInstall Software ធៅកនុង Linux កដ៏ូចជាOS ដនេដដរមនុនងិធររើរាស ់ Software គធឺយើងររូវ Install វាជាមនុសិន។ ធៅកនុង Linux ធយើងអាច Install ធដាយធររើ Command មួយចនំនួដូចខ្ងធរកាម៖ ១.ររសិនធបើ File ដដលធយើង Install ជាFile rpm ធពលធ ោះធយើងររូវ Install ធដាយធររើ rpm ធដើមបីInstall ធដើមបីដំធ ើងធយើងធររើ៖ #rpm -i [Path]<Software Name+Extension> ករ ីធនោះធពលដំធ ើងគ្នម នធឃើញសកមមភាពទងំអស់ុរធបើ Arrow ធ ោះវាបងាា ញ ដរធបើ Complete ធ ោះវាមិនធឃើញអវីទងំអស់។ #rpm -ivh [Path]<Software Name+Extension> ករ ីធនោះវាបងាា ញភាគរយននការ Install ។ ធដើមបី Uninstall ធយើងធររើ Command rpm ដូចគ្នន គ៖ឺ #rpm -e <Software Name> ធដើមបីធមើលថាធរើធយើងបាន Install អវីខ លោះធយើងធររើ Command៖ #rpm -qa ធមើលទងំអស់ #rpm -qa |grep Software សំរាបរ់កធ ម្ ោះSoftware ដដលបានInstall ។ ធដើមបីUpdate Software ដដលមានExtension .rpm គ៖ឺ #rpm -U <Software Name> ររសិនជា File ដដលធយើងចង់ Install មាន Extension ជា .sh ធដើមបី ធ្វើការដំធ ើង Software ររធភេធនោះធយើងធររើ៖ #sh [Path]<File name> រធឺយើងអាចDouble Click យកដរមេងកប៏ាន។
L I n u x a d m i n i s t r a t o r
Page 51
7.2 UnInstall Software ដរធពលធយើង Uninstall ធយើងធររើ Command rpm វញិ។ ធយើងអាចInstall Software rpm ធដាយធររើCommand yum ។ដរធយើងអាចធររើបានលោុះរតាដរធយើងភាជ ប់ Internet ជាមនុសិនពីធរ ោះការធររើCommand ធនោះវា Install Automatic ធចញពីFtp server ដដលវាបានក ំរេ់កុរួចជាធស្សច។ ធដើមបីInstall ធដាយធររើyum ធយើងធររើ៖ #yum install <Software Name> ធដើមបីUninstall ធដាយធររើyum ធយើងធររើ៖ #yum remove <Software Name> ធដើមបីCheck ធមើលSoftware ដដលបានInstall ធដាយធររើ Command yum ធយើងធររើ #yum list <SoftwareName> ធដើមបីUpdate ធមើលSoftware ដដលបានInstall ធដាយធររើ Command yum ធយើងធររើ #yum update <SoftwareName> ធយើងកអ៏ាច install Software ធចញពីេតីាងំរបស់Hard dish ,usb..ធដាយធររើ Command yum ដូចជា៖ #yum Localinstall[path]<File Name> Note: 7.3 Mount Device ណាមួយឡោយសវយ័ររវែតិ ធដើមបី Mount Device ោមួយធដាយសវ័យររវរេ ិជាអចនិរនធយើងររូវធៅ Configure File មួយគ៖ឺ #/etc/fstab ធៅកនុង File ធ ោះវាដចកធចញជាប ទ រ់ុ ដលប ទ រន់មួិយៗគជឺា Device មួយដដលបាន Mount ធៅកាន ់Mount Point ោមួយធដាយសវយ័ររវរេធិៅធពលដដល User Logon ធររើ Linux។ ធៅកនុង File /etc/fstab ដចកធចញជា៥Column #vi /etc/fstabp /dev/sdb /mnt/usb Vfat defaults 0[1] 0[2] /dev/sdvជាDevice Name ដដលចង ់Mount ធដាយសវ័យររវរេ ិ
L I n u x a d m i n i s t r a t o r
Page 52
/mny/usb ជាmount point ដដលធយើងបធងក ើរ Vfat ជា File System របស់ Window ដដលររូវនងិFat32 default ជាKeyword (defual word) [1]: ធបើដាកធ់លខ០ធ ោះវានងិមិនបាន check device ធ ោះធេដរធបើដាកធ់លខ 1 ធ ោះវានងិ back up ធដាយសវ័យររវរេនិងិrestore ធពលមានបញ្ហា កនុងខ ោះធពលមា៉ាសុីនមិនរររររី។ [2]: ធបើដាកធ់លខ0ធ ោះវាមិនcheck ធ ោះធេធ ើយធររើជាមួយSystem root។ ធលខ1 ធ ោះវានងិCheck ធលខ2 ធររើជាមួយ Sytem ធរៅពី root Note: Vfat =Fat32 for windows msdox=Fat16
ext2
File System for Linux
ext3.
L I n u x a d m i n i s t r a t o r
Page 53
Chapter 8 N e t w o r k s e t t i n g s
8.1 ការឡររើ Command hostname ធៅកនុង Linux ធដើមបី check ធមើលធ ម្ ោះគធឺររើCommand hostname ៖
8.2 ការឡររើរតូរឡ ម្ ោះ Computer ធដើមបីរេូ រធ ម្ ោះ Computer ជាលកខ ោះបធោេ ោះអាសននធយើងធររើ
#hostname ComputerName
ដរធពលធយើងRestart ធពលធ ោះវានងិររ បម់កធ ម្ ោះធដើមវញិ។
ធដើមបីរេូ រធ ម្ ោះ Computer ជាធរៀងរ រូធយើងររូវធៅ Configure File មួយដដលមានធ ម្ ោះថាNetwork ធៅកនុង/etc/sysconfig/network ធដាយដសវងរក Parameter មួយមានធ ម្ ោះថា hostname។
8.3 ការ Check និ្ង Set IP
ធដើមបីCheck ip ធយើងធររើ Command
#ifconfig
ធដើមបីក ំរ់ Ip Address ធៅធអាយNetwork Card ោមួយធយើងអាចអនវុរេនប៍ាន៣រធបៀបដូចខ្ងធរកាម៖
១.ធយើងធររើ Command ifconfig ជាមួយ Syntax ដូចខ្ងធរកាម
#ifconfig <NetworkCardName> <IP Address> netmask <NetmaskAddess> up
L I n u x a d m i n i s t r a t o r
Page 54
ការធររើ Command ធនោះគធឺយើងរេូ រ IP ជាលកខ ោះបធោេ ោះអាសននប៉ាធុោណ ោះធៅធពលធយើងRestart ធ ោះវានងិរេូ រមកភាពធដើមវញិទងំអស់។
២.ធដើមបីក ំរ់ IP ជាធរៀងរ រូធយើងររវូធៅ Configure File មួយដដលមានធ ម្ ោះនងិេតីាងំដូចខ្ងធរកាម៖
/etc/sysconfig/network-scripts/ifcfg-networkcardname
ឧទ រ ៍ាៈ
ធយើង Edit
L I n u x a d m i n i s t r a t o r
Page 55
DEVICE=eth3 ធ ម្ ោះNetwork Card
IPADDR=192.168.1.100 គជឺាIp របស់Network Card
ONBOOT=yes ធពល Boot គធឺររើNetwork Card ខ្ងធលើ NETMASK=255.255.255.0 គជឺាNetmask របស់ Network Card
BOOTPROTO=static គធឺដើមបីបញ្ហជ កថ់ាវាStatic ip ។
ករ ីធយើងចងធ់ររើDHCP Client ធយើងដកធលើStatic មកdhcp ។
៣.ធយើងអាចក ំរ់ IP ធដាយធររើCommand Setup វាមិនររឹមដរអនញុ្ហា រធិអាយធយើងក ំរ់ IP
ប៉ាធុោណ ោះធេគវឺាអាច Configure Firewall Check service ក ំរធ់មា៉ា ង Configure Key board....។
ធយើងដឹងធ ើយថាធៅធលើNetwork Card មួយធយើងអាចAdd IP បានជាធរចើនដដលធៅថាIP
Alias ធដាយធររើដូចខ្ងធរកាម៖ 8.4 ការឡររើ Command ifconfig ១.ធយើងធររើ Command
#ifconfig <ifcfg-ethName:0 IPAddress netmask ipNetmask up > ធនោះគរឺគ្នន ់ុ រជាលកខ ោះបធោេ ោះអាសននដរប៉ាធុោណ ោះ។
ឧទ រ ៍ាៈ #ifconfig ifcfg-eth3:0 192.168.1.10 netmask 255.255.255.0 up ២.ឬធយើងអាចបធងក ើរ File មួយដដលមានធ ម្ ោះធចញពីNetwork Card ោមួយដដលធយើងធររើ៖
ifcfg-NetworkCardName:0 ធ ើយររង ់Device=eth3:0 8.5 ការឡររើ Command Start & Stop Service network
ការ Configure File ធនោះគធឺយើងររូវរេូ រ IP ជាធរៀងរ រូប ទ បពី់ធយើង Edit File រួចធយើងររូវធររើ Command ដូចខ្ងធរកាម៖ #ifup NetworkCard (Restart) #ifdown NetwordCard (Stop)
L I n u x a d m i n i s t r a t o r
Page 56
#service network restart (Restart) #service network stop (Stop) ធៅកនុង Linux ធយើងអាចក ំរធ់ៅធពលធយើងធររើរាស់ធ ម្ ោះជំនសួ IP ធរើ Linux វាសួរ
File HostមនុឬDNS មនុ។
ធយើងដឹងធ ើយថា host File មិនថា windows ឬ Linux កេី ធដើមបីក ំរក់ នុងការធររើធ ម្ ោះជំនយួ IP
ធយើងធៅ Configure File host។ #etc/host.conf order hosts, bind ធដើមប ីPoint IP ជាធរចើនធៅកានធ់ ម្ ោះដរមួយធយើងររវូរេូ រ កយbind ធៅជាmulti on។
ធដើមប ីAdd IP Address របស់DNS ធៅធអាយNetwork Card គធឺយើងររូវធៅConfigure File មួយដដលមានធ ម្ ោះថា resolv.conf ដដលមានេតីាងំ /etc/resolv.conf ។
ធដើមបី Start ធពលIP បានដកដររធយើងធររើCommand #service network restart
3.1 Set static IP address to the server, DHCP is not recommended if you use
as a server, Change it.
L I n u x a d m i n i s t r a t o r
Page 57
3.2 Start Network Service
L I n u x a d m i n i s t r a t o r
Page 58
3.3 Disable IPv6 if you don't need it.
8.6 C o n f i g u r e S e r v i c e s
8.6.1 stop services that are enabled by default but you don't need them.
List all services by a command below.
L I n u x a d m i n i s t r a t o r
Page 59
8.6.2 Stop a service. The example below means stop 'netfs' and disable
auto-start at booting system.
8.6.3 Following list is services by default if you install Fedora 14 as the same
procedure with this site. (Minimal only). '*' means Author sets auto -start.
auditd The audit package contains the user space utilities for storing and searching the audit records
generate by the audit subsystem in the Linux 2.6 kernel *
cgconfig Start cgconfigparser
cgred This is a daemon for automatically classifying processes into cgroups based on UID/GID
crond The daemon to execute scheduled commands *
ip6tables It's IPv6 packet filter administration
iptables It's administration tool for IPv4 packet filtering and NAT
lvm2-
monitor Monitor LVM2 with using dmeventd *
netconsole It sends printk message from kernel on UDP
netfs NFS client
network Network system *
rdisc Detect routers in local subnets
restorecond It's the daemon that watches for file creation and then sets the default SELinux file context
rsyslog It reads and/or clears kernel message ring buffer; set console_loglevel *
saslauthd saslauthd is a daemon process that handles plaintext authentication requests on behalf of
the SASL library
sendmail SMTP server
sshd OpenSSH SSH daemon *
udev-post Moves the generated persistent udev rules to /etc/udev/rules.d
L I n u x a d m i n i s t r a t o r
Page 60
Chapter 9 DHCP Server
9.1 ការ Configure DHCP DHCP=Dynamic host configuration protocol DHPC Client វាមិនអាស្ស័យធលើOSធេធអាយដរ Client ធ ោះវានងិេេលួ បានIP ដូចៗគ្នន ។
ធដើមបីអាចធររើរាស់DHCP Serverបានធយើងររូវ៖
១. install DHCP server
២.ធៅកនុង Linux ប ទ បពី់ Install DHCP Server ធ ើយធយើងររូវដរមាន IP មួយដដលធៅកនុង range
ដដលររូវផេលធ់អាយ Client ។
៣.ប ទ បពី់ Install DHCP server ធ ើយធយើងររូវធៅ Configure File មួយដដលមានធ ម្ ោះថា/etc/dhcpd.conf ធៅកនុង File Configuration របស់DHCPធយើងអាចធររើStype updated បាន 2គ៖ឺ
1- ddns-update-stype interim; stype ធនោះធយើងធរចើនធររើជាមួយ DHCP Client ដដលជា Linux ចាបពី់Linux Core 7ធ ើង។
2- ddns-update-stype ad-hoc; ជាDHCP Version មនុចាបពី់Linux Core 7ចោុះ។
Stype ធនោះររូវសរធសធៅប ទ រធ់លើធគរបស់File Configure ។
- រគបប់ ទ រន់មួីយៗកនុង File ធនោះររូវបញ្េ បធ់ដាយសញ្ហា (;) ។
បា៉ារា៉ា ដម៉ារមួយចនំនួដដលធររើជាមួយFile Configure ធនោះមានដូចជា៖
- subnet ធររើសំរាបក់ ំរ់ Subnet ោដដលធយើងនងិធររើរាស់ IP ដដលនងិផេលធ់អាយClient។
- បា៉ារា៉ា ដម៉ារ netmastធររើសំរាបក់ ំរ ់Subnet mast ដដលធយើងផេល់ធអាយ Client
L I n u x a d m i n i s t r a t o r
Page 61
- បា៉ារា៉ា ដម៉ារ option routers សំរាបផ់េល់IP Router ធអាយ Client
- បា៉ារា៉ា ដម៉ារ subnet-mask សំរាបក់ ំរ ់Subnet mask ធដើមបីធបាោះធអាយClient
- បា៉ារា៉ា ដម៉ារ option domain-name-server សំរាបធ់បាោះ IP DNS ធអាយClient
- បា៉ារា៉ា ដម៉ារ option domain-nameសំរាបផ់េលធ់ ម្ ោះ Domain ធអាយ Client
- បា៉ារា៉ា ដម៉ារ range សំរាបផ់េល់IP ពីចធ ល ោះោដលច់ធ ល ោះោ
ប ទ បពី់ធយើង Configureធ ើយធយើង Save File ។ធ ើយធយើងររូវstart service dhcp ធដាយធររើ
#service dhcp restart #chkconfig --level 35 dhcp on ឧទ រ ៍: DHCP Server ddns-update-style interim; subnet 192.168.0.0 netmast 255.255.255.0 { option routers IPROUTER, IPROUTER1 ; option domain-name ―taohou.com‖ ; option domain-name-server IPDNS ; option subnet-mask 255.255.255.0 ; max-lease-time 7200 ; range 192.168.0.1 192.168.0.255 ;
} 9.2 ការរឡងកើែ Scope ការបធងក ើរ Supper Scope
ធដើមបីបធងក ើរ Supper Scope ធៅកនុងDHCP របស់Linux ធយើងធររើ Keyword ដដលមាន
Syntax ដូចខ្ងធរកាម៖
L I n u x a d m i n i s t r a t o r
Page 62
ddns-update-stype-interim ; shared-network networdlab1 { option-domain-name-servers 192.168.1.1 ; option subnet-mask 255.255.255.0 ; option domain-name ―taohou.com‖ ; subnet 192.168.1.1 netmast 255.255.255.0 { option routers 192.168.1.254 ; max-lease-time 7200 ; range 192.168.1.10 192.168.1.100 ; } subnet 192.168.1.0 netmast 255.255.255.0 { option routers 192.168.1.20 ; max-lease-time 7200 ; range 192.168.1.200 192.168.1.254 ; } } 9.3 ការកំណែ់ IP តាម Max Ip Address
ធដើមបីធបាោះ IP ធៅធអាយ Client តាមរយោះMax Ip Address គធឺយើង ររូវធររើKey word មួយធ ម្ ោះថាhost host namepc { hardware ethernet MaxIP ; fixed-address 192.168.0.12 ; } ធៅកនុងការធ្វើ DHCP របស់Linux ធបើចងធ់មើល Max Ip Address របស់Client ធយើងររូវចលូ Check ធលើFile
L I n u x a d m i n i s t r a t o r
Page 63
#/var/lib/dhcpd/dhcpd.lease ធដើមបីធអាយដឹងថា ថាធរើ DHCP Serverបានធបាោះ IP ោខលោះធអាយDHCP Client ធយើងររូវចលូធមើលកនុង File មួយដដលមានធ ម្ ោះថា #vi /var/lib/dhcpd/dhcpd.lease ធដើមបីធបាោះIP ធៅធអាយ Client តាមរយោះMax Ip Address គធឺយើងររវូធររើ Keyword មួយចនំនួដូចខ្ងធរកាម host name pc { hardware ethernet MaxIp ; fixed-address 192.168.1.1 ; ជា Ip សំរាបធ់បាោះធអាយPC } Note: Keyword host ររវូសរធសកនុង Scope ។ ធៅកនុង Linux ធបើចងធ់មើល Max Ip Address របស់ Client ធយើងររវូចលូធៅCheck ធលើ File មួយដដលមានធ ម្ ោះនងិេតីាងំដូចខ្ងធរកាមាៈ #/var/lib/dhcpd/dhcpd.lease DHCP releagent គជឺា Service មួយធររើសំរាបផ់េលព់័រម៏ាន Network ធៅធអាយ DHCP Client ដដលធៅកនុង Subnet 2 ធផសងគ្នន ។ ធដើមបី Configue DHCP Releagent គធឺយើងររវូធៅ Configure File មួយដដលមានធ ម្ ោះនងិេីតាងំគ ឺ /etc/sysconfig/dhcrelay ។ ប ទ បពី់ធយើងបាន Configure ធយើងររូវធៅ Restart Service មួយដដលមានធ ម្ ោះថាdhcrelay #chkconfig -- level 35 dhcrelay on Note: Sevice របស់DHCP Releagent គធឺដើជាមួយDHCP Server ការ Configure dhcrelay
L I n u x a d m i n i s t r a t o r
Page 64
Chapter 10
10.1 ការ Configure Telnet Server
Telnetserver វាជាThird Parti Software របស់ Linux ដូចធនោះធដើមបីធររើរាស់វាបានធយើងររូវInstall វាជាមនុសិនប ទ បពី់ Install ធ ើយធយើងររូវធៅ Configure File មួយដដលមានធ ម្ ោះថាtelnetធៅកនុង/etc/xnetd.d/telnet
file ធនោះវាដចកធចញជាប ទ រគ់ធឺយើងររូវធៅរកKey Word មួយដដលមានធ ម្ ោះថា Disableជា Defual Disable=yes មាននយ័ថាធយើងពុំអាចធររើរាស់Telnet Server បានធេ។
ដូចធនោះធដើមបីធអាយTelnet Client អាចេ ំកេ់នំងជាមួយ Telnet Server គធឺយើងររូវរេូ រធៅជាno ប ទ បពី់ធយើងបានដកដររធ ើយធយើងររូវSave ធ ើយងររូវStart Service មួយដដលមានធ ម្ ោះថាxinetd ។
ធដើមបី Start service ោមួយធៅកនុង Linux ធយើងររូវធររើ Command: #service ServiceNane start/stop #service ServiceName status ដឆកធមើលថាធរើ Service Name ធ ោះ Start ឬ Stop ។
ធយើងអាចក ំរធ់អាយ Service ោមួយ Start ធដាយសវ័យររវរេិធៅធពល Windows Start
ជាធលើកដំបូងគធឺយើងររូវធររើ Command ដូចខ្ងធរកាម៖ #chkconfig --level Levelname serviceName on #chkconfig --level 35 xinetd on
L I n u x a d m i n i s t r a t o r
Page 65
Chapter 11 U p d a t e s y s t e m
11.1 ការ Update your system with 'yum' command
However, before doing it, Install 'yum-plugin-fastestmirror' that looks for fast server
and download packages from there automatically when yum command is used.
L I n u x a d m i n i s t r a t o r
Page 66
Chapter 12 C o n f i g u r e s u d o
12.1 Configure sudo to separate users duty if some people share privileges
12.1.1 Transfer root privilege to a user all
12.2 In addition to the setting [12.1], set that some commands are not allowed
L I n u x a d m i n i s t r a t o r
Page 67
12.3 Transfer some commands with root privilege to users in a group
L I n u x a d m i n i s t r a t o r
Page 68
12.4 Transfer a command with root privilege to a user
12.5 The logs for sudo are kept in '/var/log/secure', but there are many kind of logs
in it. So if you'd like to keep only sudo's log in a file, Set like follows.
L I n u x a d m i n i s t r a t o r
Page 69
Chapter 13 S S H S e r v e r
13.1 ការដំឡ ើង និ្ង Configuration SSH Server
open secute shell (SSH) គជឺាProtocol មួយធររើសំរាបជំ់នសួ Telnet ,ftp, rlogin ,rsh, rep ធ ើយ SSH វាធររើជាលកខ ោះEncrypt។
ធៅកនុង Linux ធដើមបីអាចធររើ Service ធនោះបានធយើងររូវ Install package មួយដដលមានធ ម្ ោះថា៖
_openssh-server....fc10.rpm សំរាប់server
_ openssh-client....fc10.rpm សំរាប ់Client
ប ទ បពី់ Install Service ធនោះធ ើយធយើងររវូធៅ Configure File មួយដដលមានធ ម្ ោះថាsshd-config
#vi /etc/sshd-config
ប ទ បពី់ធ្វើការConfigure File ធនោះធ ើយធយើងររូវStart Service មួយដដលមានធ ម្ ោះថាsshd
#service sshd restart
ធដើមបី Connect ssh client នងិ ssh server ធយើងររូវធររើthird party software...។ 13.2 ការដំឡ ើង និ្ង Configuration Client
ធដើមបីឲ្យ Linux កាលយជា ssh client ធយើងររូវ Install package មួយដដលមានធ ម្ ោះថាOpenssh-client ----fc10.rpm
ធដើមបីConnect ធៅកាន់openssh-server ធយើងររូវវាយ
#ssh IPserver
#ssh 192.168.1.1
L I n u x a d m i n i s t r a t o r
Page 70
ធបើធយើងយកLinux មក Logon ធ ោះវាគរិថាជាClient របស់ server ដដលបធងក ើរដួចធនោះថារគ្នន ់ុ រធេៀមទ password ប៉ាធុោណ ោះ។
ដរធបើយក xp Logon ធ ោះវាធេៀមទUserName +Password ។
ធដើមបីអាចឲ្យ xp Logon ចលូ Linux ធដាយធររើ ssh គធឺយើងររូវធររើ Third party Software ធដើមបីLogon ដូចជាputty ជាធដើម។
ssh មិនររឹមដរអាចធអាយធយើង Remote ពីចងំាយប៉ាធុោណ ោះធេ ។ វាដថមទងំអាចធអាយធយើងTrainsver File ពីចងំាយបានធេៀរផង។
scp <parth><FileName> Ip Server:<Parth>< File Name>
scp ធររើសំរាប ់trainsver file ពី local ធៅServer
Client (Linux)[/mnt/winword.txt] DC(Linux)
192.168.0.10 192.168.0.1
Ex: #scp /mnt/winword.txt 192.168.0.1:/mnt/doc
#scp /mnt/doc.txt [email protected]:/home/admin
ចង់Trainsver ធអាយ User admin ធដាយដាក ់File ធៅកនុង /home/admin(Specifig User name)។
ការ Trainsver File ពី Server មក Client វញិ
Syntax:#scp username@tohostname:/remotefile /newlocalfileclient
L I n u x a d m i n i s t r a t o r
Page 71
13.3 Password Authentication
Configure SSH Server. Before configuration, it's neccessary to set config on
routers that tcp packets to port 22 can pass through.
13.3.1 Configure SSH server for Windows clietnt computer to be able to login
from them. This is the way with Password Authentication.
13.4 Get an apprication which you can login from Windows clients. This example
shows to use Putty like below. Input your server's IP address and Click 'Open' button.
L I n u x a d m i n i s t r a t o r
Page 72
Chapter 14
14.1 ការដំឡ ើង និ្ង Configuration
ធៅកនុង System Linux ធយើងអាច Config ធអាយកចិ េការោមួយធអាយដំធ ើ រការធដាយសវ័យររវរិេធដាយក ំរធ់ៅធលើធពលវាោ គនឺថៃដខឆ្ន ំ។ ធយើងអាចក ំរក់ារងារមួយចនំនួដូចជា back up system, sent mail Run Scrip, shutdown . ....
ធៅកនុង Linux Tools មួយចនំនួដដលធ្វើការក ំរក់ារងារោមួយធដាយសវ័យររវរេរិបស់ Linux គមឺានធ ម្ ោះ Cron, Anacrond , Bath , ….
-Cron គជឺា Tools មួយដដលអាចធអាយធយើងធដើមបីធររើធ្វើការក ំរធ់ៅធលើ Scedure អវី មួយធដើមបីដំធ ើ រការការងារោមួយដដលមានការផសំដូចជាធមា៉ា ង េីDay of month ,Minute Day of
week ,and week
មនុនងឹអាចធររើ Service ធនោះបានគធឺយើងររូវ Install Package មួយធ ម្ ោះថា Vixie-Cron…fc10.rpm ជាមនុសិន។ ប ទ បពី់ Install ធ ើយធយើងររូវធៅ Configer File មួយធ ម្ ោះនងិេតីាងំ/etc/crontab ។
ធៅកនុង File ធនោះដចកធចញជា ប ទ រ ់ដដលប ទ រន់មួីយៗគជឺាកចិ េការោមួយដដលធយើងក ំរធ់ៅធអាយ Linvx ធដើមបអីនរុ េនធ៏លើការងារធ ោះធៅធលើធពលធវោធ ោះ។ Note:ធបើសិនជាដលធ់ពលធវោននការអនវុរេនក៏ារងារធ ោះកប៏៉ាដុន េCompoter របស់ធយើងបិេ។ធពលធ ោះService Cron មិនអនវុរេនក៏ារងារធ ោះធេ។
ធៅកនុង line នមួីយៗវាដបងដចកជា Colum ដដលCulomnនមួីយៗដបងដចកធដាយSpace ៖ - Column េ1ីសំរាប ់Minute : (0-59)
- Column េ2ី សំរាប ់Hour :(0-23)
- Column េ3ីសំរាប ់Day of month (នថៃេ1ី,2,3, ..30គរិតាមដខ) ។
L I n u x a d m i n i s t r a t o r
Page 73
- Column េ4ីសំរាបm់onth (1-12) រអឺាចធររើ 3 រដំួបូងននធ ម្ ោះEnglish ជាភាស្គ
- Column េ5ីសំរាប ់Day of week :(1-7) 7= Sunday
- Column េ6ីជាUser Name : គជឺាUser ដដលមានសិេ ធអិនវុរ េនក៏ចិ េការងារធ ោះ
- Columnេ7ីសំរាបC់ommand : គជឺាCommand line ដដលររូវអនវុរេនក៏ចិ េការងារធ ោះតាមធពធវោក ំរ។់
ប ទ បពី់ Configure file ធនោះធ ើយគរឺរូវ Start Service មួយធ ម្ ោះថា Crond ។
Note:មាននមិិរេសញ្ហា មួយចនំនួដដលររូវបានធររើរាស់ធៅកនុង Columnធនោះ។
-(*) រោំងធអាយរគបធ់លខទងំអស់រគបរ់នំល -(-)គជឺាចធ ល ោះធលខ Ex (2-5)មាននយ័ថាចាបពី់ 2,3,4,5 នងិធ្វើការអវី មួយ -(,) គជឺាចធ ល ោះធពលននការក ំរ ់Ex (2,5)មាននយ័ថាដខ2 នងិ ដខ5រនឺថៃេ ី2នងិនថៃេី5រ ឺ-(*/ចនំនួ)មាននយ័ថាធរៀងរាល ់(*)ននចនំនួធ ោះវា នងិធ្វើការ។ Ex: ធរៀងរាល ់នថៃ េ3ី0ធអាយ Backup មេង។ ធៅររងេ់ធីយើងដាក់*/30 សំនរួអនវុរេន ៏1ចលូBackup home Directory របស់User Account root ធៅកាន ់Usb mount pointe usb ររូវបធងក ើរ ធដាយខ លនួéងធ ើយក ំរធ់អាយLinux Mount ធដាយសវយ័ររវរេនធ៏ៅកាន់Usb ធនោះធៅធពលLogon ធររើSystem ការBackup ធនោះគធឺ្វើធ ើងធរៀងរាលន់ថៃអាេរិយធមា៉ា ង8យប។់ 2ឧបមាថាធយើងរច ំធអាយLinux Restart ធរៀងរាល ់េធីរើធ្វើយ៉ាងោធេើបអាចRemoveកចិ េការធនោះធចាលធដើមបីអាចធអាយធយើងធររើបានជា្មមតា។ 3ធយើងដឹងធ ើយថាធយើងអាចBoot ចលូSingle mode ធដាយមិនចាបំាចស់្គគ ល់Password root ធរើធ្វើយ៉ាងោធេើបធអាយធពលBoot ចលូ Single Mode ទមទPassword root ដដរ៕
L I n u x a d m i n i s t r a t o r
Page 74
Chapter 15 DNS Server 15.1 Install And Configure BIND
Configure DNS server which resolves domain name or IP address.
15.2 Install BIND
15.3 Configure BIND
This example is done with grobal IP address [172.16.0.80/29], Private IP address
[10.0.0.0/24], Domain name [server.world]. However, Please use your own IPs and
domain name when you set config on your server. ( Actually, [172.16.0.80/29] is for
private IP address, though. )
L I n u x a d m i n i s t r a t o r
Page 75
L I n u x a d m i n i s t r a t o r
Page 76
15.4 Set Zones for forward resolution
Create zone files that servers resolve IP address from domain name.
15.5 For internal zone
This example uses internal address[10.0.0.0/24], domain name[server.world], but
please use your own one when you set config on your server.
L I n u x a d m i n i s t r a t o r
Page 77
15.6 For external zone
This example uses external address[172.16.0.80/29], domain name[server.world],
but please use your own one when you set config on your server.
L I n u x a d m i n i s t r a t o r
Page 78
15.7 Set Zones for reverse resolution
Create zone files that servers resolve domain names from IP address.
15.8 For internal zone
This example uses internal address[10.0.0.0/24], domain name[server.world], but
please use your own one when you set config on your server.
15.9 For external zone
This example uses external address[172.16.0.80/29], domain name[server.world],
but please use your own one when you set config on your server.
L I n u x a d m i n i s t r a t o r
Page 79
15.10 Start BIND
15.10.1 Start BIND
15.10.2 Change settings where server to name resolution
L I n u x a d m i n i s t r a t o r
Page 80
15.10.3 Make sure server can resolve domain names or IP addresses
L I n u x a d m i n i s t r a t o r
Page 81
15.11 Set CNAME
If you'd like to set another name to your Host, define CNAME record in zone file
15.11.1 Set CNAME record in zone file
L I n u x a d m i n i s t r a t o r
Page 82
15.12 Configure as a Slave Server
Configure DNS as as Slave Server. It's easy to set up it.
Following example shows an environment that master DNS is "dlp.server.world",
Slave DNS is "ns.example.host".
15.12.1 Write config in Zone file on Master DNS
15.13 Configuration on Slave DNS
L I n u x a d m i n i s t r a t o r
Page 83
Chapter 16 Virtualization Server
16.1 Install KVM
It's Virtualization with KVM ( Kernel-based Virtual Machine ) + QEMU. This requires that the CPU on your computer
has a function Intel VT or AMD-V.
16.1.1 Install KVM
16.1.2Configure Bridge networking for KVM virtual machine
L I n u x a d m i n i s t r a t o r
Page 84
L I n u x a d m i n i s t r a t o r
Page 85
16.2 Create Virtual Machine #1
Install GuestOS and create Virtual Machine. This example shows to install Fedora 14.
16.2.1 Install on text mode via network, it's OK on Console or remote connection with
Putty and so on.
L I n u x a d m i n i s t r a t o r
Page 86
For options, make sure 'man virt-install', there are many options.
-n specify the name of Virtual Machine
-r specify the amount of memories of Virtual Machine
-f specify the location of disks of Virtual Machine
-s specify the amount of disks of Virtual Machine
--vcpus=
specify the virtual CPUs
--os-type
specify types of GuestOS
--network=
specify network types of Virtual Machine
--nographics
nographics
--location=
specify location of installation where from
--extra-args=
specify parameters that is set in kernel
16.2.2 Install with text mode, it's the same with common procedure of installation.
After finishing installation, reboot first and then login prompt is shown like follwos.
16.2.3 Move to GuestOS to HostOS with Ctrl + ] key.
Move to HostOS to GuestOS with a command 'virsh console (name of virtual machine)'.
16.2.4 Because after installing GuestOS from network, it is minimum settings, so it's useful to save it as a template in order to create new virtual machines later. Please refer next procedure to create a new virtual machine from template below.
L I n u x a d m i n i s t r a t o r
Page 87
16.2.5 Set basic initial configuration to GuestOS first before using it.
16.3 Create Virtual Machine #2
Create a Virtual Machine from template.
16.3.1 Create a Virtual Machine from template that is made in previous page
L I n u x a d m i n i s t r a t o r
Page 88
L I n u x a d m i n i s t r a t o r
Page 89
16.3.2 News GuestOS' network is failed to boot because it is the same to existing
GuestOS's one. So Change network settings for new one.
L I n u x a d m i n i s t r a t o r
Page 90
16.4 Create Virtual Machine #3
If you install Desktop Environment, it's possible to create a Virtula machine on GUI. This example shows to install Windows 7 on GUI.
16.4.1 Install virt-manager first
16.4.2 Start X Window System and run 'Virtual Machine Manager'
L I n u x a d m i n i s t r a t o r
Page 91
16.4.3 Click 'New' button and open a wizard to create a new Virtual Machine
16.4.4 Specify the name of virtula machine and installation source. This example
selects local media
L I n u x a d m i n i s t r a t o r
Page 92
16.4.5 Select Installation media or ISO image, and specify OS type and version
16.4.6 Specify amount of memories and number of virtula CPUs
L I n u x a d m i n i s t r a t o r
Page 93
16.4.7 Specify amount of disks
16.4.8 Open 'Advanced options' and make sure the settings for networking or
architecture are correct
L I n u x a d m i n i s t r a t o r
Page 94
16.4.9 Installation starts
16.4.10 Installation finished and Windows 7 is running
16.5 Operations
Operarions with virsh command.
16.5.1 Start Virtual Machine
L I n u x a d m i n i s t r a t o r
Page 95
16.5.2 Stop Virtual Machine
16.5.3 List all Virtual Machines
16.5.4 Switch console Move to GuestOS to HostOS with Ctrl + ] key.
Move to HostOS to GuestOS with a command 'virsh console (name of virtual machine)'.
16.5.5 Other options. There are many options, please try to execute them [root@dlp ~]#
virsh --help
virsh [options] [commands]
options:
-c | --connect <uri>
hypervisor connection URI
-r | --readonly
connect readonly
L I n u x a d m i n i s t r a t o r
Page 96
-d | --debug <num>
debug level [0-5]
-h | --help
this help
-q | --quiet
quiet mode
-t | --timing
print timing information
-l | --log <file>
output logging to file
-v | --version
program version
commands (non interactive mode):
help
print help
attach-device
attach device from an XML file
attach-disk
attach disk device
attach-interface
attach network interface
autostart
autostart a domain
capabilities
capabilities
cd
change the current directory
connect
(re)connect to hypervisor
console
connect to the guest console
cpu-baseline
compute baseline CPU
cpu-compare
L I n u x a d m i n i s t r a t o r
Page 97
compare host CPU with a CPU described by an XML file
create
create a domain from an XML file
start
start a (previously defined) inactive domain
destroy
destroy a domain
detach-device
detach device from an XML file
detach-disk
detach disk device
detach-interface
detach network interface
define
define (but don't start) a domain from an XML file
domid
convert a domain name or UUID to domain id
domuuid
convert a domain name or id to domain UUID
dominfo
domain information
domjobinfo
domain job information
domjobabort
abort active domain job
domname
convert a domain id or UUID to domain name
domstate
domain state
domblkstat
get device block stats for a domain
domifstat
get network interface stats for a domain
dommemstat
L I n u x a d m i n i s t r a t o r
Page 98
get memory statistics for a domain
domxml-from-native
Convert native config to domain XML
domxml-to-native
Convert domain XML to native config
dumpxml
domain information in XML
edit
edit XML configuration for a domain
find-storage-pool-sources
discover potential storage pool sources
find-storage-pool-sources-as
find potential storage pool sources
freecell
NUMA free memory
hostname
print the hypervisor hostname
list
list domains
migrate
migrate domain to another host
net-autostart
autostart a network
net-create
create a network from an XML file
net-define
define (but don't start) a network from an XML file
net-destroy
destroy a network
net-dumpxml
network information in XML
net-edit
edit XML configuration for a network
net-list
L I n u x a d m i n i s t r a t o r
Page 99
list networks
net-name
convert a network UUID to network name
net-start
start a (previously defined) inactive network
net-undefine
undefine an inactive network
net-uuid
convert a network name to network UUID
iface-list
list physical host interfaces
iface-name
convert an interface MAC address to interface name
iface-mac
convert an interface name to interface MAC address
iface-dumpxml
interface information in XML
iface-define
define (but don't start) a physical host interface from an XML file
iface-undefine
undefine a physical host interface (remove it from configuration)
iface-edit
edit XML configuration for a physical host interface
iface-start
start a physical host interface (enable it / "if-up")
iface-destroy
destroy a physical host interface (disable it / "if-down")
nodeinfo
node information
nodedev-list
enumerate devices on this host
nodedev-dumpxml
node device details in XML
nodedev-dettach
L I n u x a d m i n i s t r a t o r
Page 100
dettach node device from its device driver
nodedev-reattach
reattach node device to its device driver
nodedev-reset
reset node device
nodedev-create
create a device defined by an XML file on the node
nodedev-destroy
destroy a device on the node
pool-autostart
autostart a pool
pool-build
build a pool
pool-create
create a pool from an XML file
pool-create-as
create a pool from a set of args
pool-define
define (but don't start) a pool from an XML file
pool-define-as
define a pool from a set of args
pool-destroy
destroy a pool
pool-delete
delete a pool
pool-dumpxml
pool information in XML
pool-edit
edit XML configuration for a storage pool
pool-info
storage pool information
pool-list
list pools
pool-name
L I n u x a d m i n i s t r a t o r
Page 101
convert a pool UUID to pool name
pool-refresh
refresh a pool
pool-start
start a (previously defined) inactive pool
pool-undefine
undefine an inactive pool
pool-uuid
convert a pool name to pool UUID
secret-define
define or modify a secret from an XML file
secret-dumpxml
secret attributes in XML
secret-set-value
set a secret value
secret-get-value
Output a secret value
secret-undefine
undefine a secret
secret-list
list secrets
pwd
print the current directory
quit
quit this interactive terminal
reboot
reboot a domain
restore
restore a domain from a saved state in a file
resume
resume a domain
save
save a domain state to a file
schedinfo
L I n u x a d m i n i s t r a t o r
Page 102
show/set scheduler parameters
dump
dump the core of a domain to a file for analysis
shutdown
gracefully shutdown a domain
setmem
change memory allocation
setmaxmem
change maximum memory limit
setvcpus
change number of virtual CPUs
suspend
suspend a domain
ttyconsole
tty console
undefine
undefine an inactive domain
uri
print the hypervisor canonical URI
vol-create
create a vol from an XML file
vol-create-from
create a vol, using another volume as input
vol-create-as
create a volume from a set of args
vol-clone
clone a volume.
vol-delete
delete a vol
vol-dumpxml
vol information in XML
vol-info
storage vol information
vol-list
L I n u x a d m i n i s t r a t o r
Page 103
list vols
vol-path
convert a vol UUID to vol path
vol-name
convert a vol UUID to vol name
vol-key
convert a vol UUID to vol key
vcpuinfo
domain vcpu information
vcpupin
control domain vcpu affinity
version
show version
vncdisplay
vnc display
(specify help <command> for details about the command)
L I n u x a d m i n i s t r a t o r
Page 104
Chapter 17 SPICE Server
17.1 Install Spice Server and Configuration
Install Desktop Virtualization "SPICE ( Simple Protocol for Independent Computing Environment )". It's
possible to connect to virtual machines from remote client computer.
17.1 .1Install SPICE Server
17.1.2 Create a shell script to start virtual machine with SPICE
17.3.1 Edit existing virtual machine's xml-file and start virtual machine with SPICE. This site's example has created virtual machine without graphics, so it's OK to change settings like follows, but if you created virtual machine with graphics, Remove "<graphics>***" and "<video>"*** sections in xml file because qxl is used for graphics.
17.1.4 If you use virtula machine with GUI, Install QXL driver in GuestOS of virtual machine
17.1.5 Configuration is all OK. See next page to connect to SPICE server from SPICE
L I n u x a d m i n i s t r a t o r
Page 105
client
17.2 SPICE Client
Connect to virtual machine that is started with SPICE. This example uses Fedora 14 for SPICE client. 17.2.1 Install SPICE client
17.2.2 Start X windows system and input command like follows to connect to virtual machine
17.2.3 Just connected
L I n u x a d m i n i s t r a t o r
Page 106
17.3 SPICE Client - Windows 7
SPICE client for Windows is also provided, so it's possible to connect from Windows. This example uses Windows 7 (x64) for SPICE client. 17.3.1 Download SPICE client from the link below.
⇒ http://www.spice-space.org/download.html
Download "spice-client-win32-0.6.3.zip" and "spice_libs_win32_063_and_earlier.zip". Next, unzip
"spice-client-win32-0.6.3.zip"
and there is a "spicec.exe" in it. Next, unzip "spice_libs_win32_063_and_earlier.zip" and there is a
"lib" folder in it.
Copy "spicec.exe" in "lib" folder and double click it, then following screen is shown, Input KVM
host's hostname or IP address and port.
Just connected.
L I n u x a d m i n i s t r a t o r
Page 107
Chapter 18 Cloud Server
18.1 Install Cloud Server and Configuration
Install Eucalyptus (frontend)
Configure Cloud Server with Eucalyptus. This example based on the environment below.
(1) frontend
[10.0.0.20]
- Fedora 14 (x86_64) KVM Host
(2) node1
[10.0.0.30]
- Fedora 14 (x86_64) KVM Host
It's necessarry to be running KVM hypervisor on the frontend and node1.
And also, because this example configures networking with SYSTEM Mode, it's necessarry to be running DHCP Server
on the frontend.
First, Configure frontend on here.
18.1.1 Install Packages
18.1.2 Install Eucalyptus
L I n u x a d m i n i s t r a t o r
Page 108
Install Eucalyptus (node)
Configure node.
(1) frontend [10.0.0.20]
- Fedora 14 (x86_64) KVM Host
(2) node1 [10.0.0.30]
- Fedora 14 (x86_64) KVM Host
The frontend has been configured and KVM hypervisor has also been configured on the node1
first.
[1]I nstall some packages first.
[2] Install Eucalyptus.
L I n u x a d m i n i s t r a t o r
Page 109
18.1.3Initial Config #1
Add Components on the frontend.
L I n u x a d m i n i s t r a t o r
Page 110
18.1.4 Initial Config #2
Configure some settings on the Web controles.
18.1.4.1 Access to 'https://(frontend's IP address):8443/' with web browser and login.
Default user name and password is both 'admin'
L I n u x a d m i n i s t r a t o r
Page 111
18.1.4.2 After login, Click "Change Password" to change admin's password
18.1.4.3 Input old password and new one and click "Change Password"
L I n u x a d m i n i s t r a t o r
Page 112
18.1.4.4
Set admin's
email address.
Click "Edit
Account
Information"
18.1.4.5 Input admin's email address in "Email address" field and click "Update
Record"
L I n u x a d m i n i s t r a t o r
Page 113
18.1.4.6 Get certificates. Click "Download Certificate" and save it on your local
18.1.4.7 Install certificates on your frontend. If you got it on your client PC, Upload it
with FTP or SFTP
L I n u x a d m i n i s t r a t o r
Page 114
18.1.5 Add Images
Add an image on Eucalyptus. This example shows to add CentOS 5.3.
L I n u x a d m i n i s t r a t o r
Page 115
18.1.6 Run Instance with admin user
Start Instance from an image.
18.1.6.1 Create keypair first
L I n u x a d m i n i s t r a t o r
Page 116
18.1.6.2 Start Instance with "euca-run-instances" command. It's possible to make sure
the field "eki-***" and others on the web controls
18.1.6.3 After for a moment, Instance will have an IP address like follows
18.1.6.4 Login to instance with key that is made in [18.1.6.1]
18.1.6.5 Input command like follows when you shutdown Instance
L I n u x a d m i n i s t r a t o r
Page 117
18.1.7 add user Add a common user in order to make him to be able to run instance.
18.1.7.1 Access to 'https://(your frontend server):8443/' and move 'Users' tab and click
'Add user'
18.1.7.2 Input some informations for a user. Then check a box "Skip email
comfirmation". If you don't check it, the account will not be active untill the user confirms on an email
L I n u x a d m i n i s t r a t o r
Page 118
L I n u x a d m i n i s t r a t o r
Page 119
18.1.7.3 Logout and Login again with a user
18.1.7.4 Get certificates. Click "Download Certificate" and save it on your local. If
you got it on your client PC, Upload it with FTP or SFTP and so on
L I n u x a d m i n i s t r a t o r
Page 120
18.1.7.5 Login with a user and Install certificates on your frontend
L I n u x a d m i n i s t r a t o r
Page 121
Chapter 19 NFS Server 19.1 Install and Configuration Configure NFS Server to share any directories.
19.1.1 It's the Configuration on the system you want to build NFS server
L I n u x a d m i n i s t r a t o r
Page 122
19.1.2 Configuration on NFS clients
L I n u x a d m i n i s t r a t o r
Page 123
Chapter 20 NIS Server 20.1 Install and configuration Configure NIS Server in order to share users' accounts among local networks.
L I n u x a d m i n i s t r a t o r
Page 124
L I n u x a d m i n i s t r a t o r
Page 125
L I n u x a d m i n i s t r a t o r
Page 126
20.2 Configure NIS Server 1
Configure NIS Server in order to share users' accounts among local networks.
L I n u x a d m i n i s t r a t o r
Page 127
L I n u x a d m i n i s t r a t o r
Page 128
20.2 Configure NIS Client
Configure on NIS clients in order to share users' accounts.
L I n u x a d m i n i s t r a t o r
Page 129
Chapter 21 LDAP Server 21.1 Install and Configuration
Configure LDAP Server in order to share users' accounts among local networks.
21.1.1 Install 389 Directory Server
L I n u x a d m i n i s t r a t o r
Page 130
L I n u x a d m i n i s t r a t o r
Page 131
L I n u x a d m i n i s t r a t o r
Page 132
L I n u x a d m i n i s t r a t o r
Page 133
L I n u x a d m i n i s t r a t o r
Page 134
L I n u x a d m i n i s t r a t o r
Page 135
21.1.2 Add Existing User and Group to LDAP Server
21.1.3 If you'd like to delete User or Group that is added in LDAP Server, Do as
below
L I n u x a d m i n i s t r a t o r
Page 136
21.1.4 Configuration for LDAP Client
L I n u x a d m i n i s t r a t o r
Page 137
L I n u x a d m i n i s t r a t o r
Page 138
L I n u x a d m i n i s t r a t o r
Page 139
Chapter 22 WEB SERVER
22.1 Install and Configure httpd
Install httpd and Configure Web Server.
22.1.1 Install httpd
22.1.2 Configure httpd
22.1.3 Make HTML test page and access to it with web browser. It's OK if following
page is shown
L I n u x a d m i n i s t r a t o r
Page 140
22.1.4 Make CGI test page and access to it with web browser. It's OK if following
page is shown
L I n u x a d m i n i s t r a t o r
Page 141
22.2 Install PHP
22.2.1 Install PHP
22.2.2 Make PHP test page and access to it with web browser. It's OK if following
page is shown
22.3 Enable User dir Enable userdir, users can build websites with this config.
22.3.1 Configure httpd
L I n u x a d m i n i s t r a t o r
Page 142
22.3.2 Make CGI test page in a user's home directory and access to it with web browser. It's OK if following page is shown
L I n u x a d m i n i s t r a t o r
Page 143
22.4 Configure SSL Configration of SSL
22.4.1 Create certificate first
Create SSL Certificates
Create a your server's original SSL Certificate. If you use your server as a business, it had better buy
and use a Formal Certificate from Verisigh and so on.
L I n u x a d m i n i s t r a t o r
Page 144
L I n u x a d m i n i s t r a t o r
Page 145
22.5 Configre httpd
Access to the test page with https. Following window is shown because Certification File is made by yourdelf,
it's no ploblem, Click Ok to proceed.
Install your server's certificate on your PC, then it's possible to access with no error. 22.6 Virtual Hostings
It's the example to configure virtual hostings. Following example is done as domain
name[server.world (root directory[/var/www/html])], virtual domain name[virtual.host (root
directory[/home/fedora/public_html])]. Before doing it, it's necessarry to add new doman name in your DNS
first.
22.6.1 Configure httpd for Virtual Hostings
L I n u x a d m i n i s t r a t o r
Page 146
22.6.2 Access to the test page that has original domain, it's OK if possible
22.6.3 Access to the test page that has virtual domain
, it's OK if possible
L I n u x a d m i n i s t r a t o r
Page 147
22.7 Configure WebDAV Here is the example to configure WebDAV
22.7.1 For example, Make a directory [security] and it makes possible to connect to WebDAV
directory only by SSL
22.7.2 config on client PC (Windows 7)
Windows 7 does not have webdav function, so Use free software for webdav client. Download 'CarotDAV' for
free from following site.
After downloading, Install and start CarotDAV, the following screen is shown, Click 'Add' button and select
'WebDAV'.
L I n u x a d m i n i s t r a t o r
Page 148
22.7.3 Input any name in 'Setting Name' field and input [server name:webdav directory] in
'URI' field and input user name and password like follows
22.7.4 The waring is shown like follows, it's SSL certificates is not installed on your PC, it's no ploblem, Click 'Ignore' and go next
L I n u x a d m i n i s t r a t o r
Page 149
22.7.5 Just accessed6
22.8 Install SpeedyCGI 7.1 Install SpeedyCGI that makes CGI fast
7.2 How to write a CGI scripts. Change PATH like follows. Reffer other options on SpeedyCGI
site
L I n u x a d m i n i s t r a t o r
Page 150
22.9 Enable Proxy_http
Foward requests to another web server by mod_proxy. This means configuring Web server as a revers proxy.
(1) www03.server.world [10.0.0.31] - Web server #1
(2) dlp.server.world [10.0.0.30]- Web server #2 This example set servers that requests to Web server (1) forward to under /test on webserver (2) 22.9.1 Configure httpd
Access with web browser. First, access to the place that does not have forwarding setting. Web server (1) replys normally as a following screen.
L I n u x a d m i n i s t r a t o r
Page 151
Access to /proxy. Web server (2) replys as a following screen
22.10 Basic auth+LDAP Configure httpd and set a page that people must authenticate and the authentication is from LDAP
server. Therefore it's necessarry to run LDAP server in your LAN. 22.10.1 9.1 It needs 'mod_authnz_ldap7 module, but it's loaded by default. If your httpd
does not load it, add following lines in your httpd.conf LoadModule ldap_module modules/mod_ldap.so LoadModule authnz_ldap_module modules/mod_authnz_ldap.so Following example shows 'test' directory requires an authentication.
Access to the test page with web browser, then authentication is required as a config. Input a LDAP user and authenticate here.
L I n u x a d m i n i s t r a t o r
Page 152
Just accessed.
22.11 Apache access log analyzer- Visitors Install Apache log analizer, Visitors 22.11.1 Install Visitors
L I n u x a d m i n i s t r a t o r
Page 153
L I n u x a d m i n i s t r a t o r
Page 154
Access to 'http://(your server's name or IP address)/visitors/', then following screeen is shown and it's possible to see httpd's log.
L I n u x a d m i n i s t r a t o r
Page 155
L I n u x a d m i n i s t r a t o r
Page 156
L I n u x a d m i n i s t r a t o r
Page 157
L I n u x a d m i n i s t r a t o r
Page 158
L I n u x a d m i n i s t r a t o r
Page 159
22.12 Apache access log analyzer-AWstats Install Apache log analizer, AWstats. 22.12.1 Install AWstats
L I n u x a d m i n i s t r a t o r
Page 160
Access to 'http://(your server's name or IP address/)/report/', then follwing sacreen is shown and it's possible to see httpd's log.
L I n u x a d m i n i s t r a t o r
Page 161
L I n u x a d m i n i s t r a t o r
Page 162
L I n u x a d m i n i s t r a t o r
Page 163
L I n u x a d m i n i s t r a t o r
Page 164
L I n u x a d m i n i s t r a t o r
Page 165
22.13 Web Mail-SquirrelMail Install SquirrelMail to build web-based mail transfer system like yahoo mail or hotmail. SMTP/IMAP server is needed to run in your LAN. 22.13.1 Install SquirrelMail
L I n u x a d m i n i s t r a t o r
Page 166
L I n u x a d m i n i s t r a t o r
Page 167
L I n u x a d m i n i s t r a t o r
Page 168
L I n u x a d m i n i s t r a t o r
Page 169
L I n u x a d m i n i s t r a t o r
Page 170
L I n u x a d m i n i s t r a t o r
Page 171
L I n u x a d m i n i s t r a t o r
Page 172
L I n u x a d m i n i s t r a t o r
Page 173
L I n u x a d m i n i s t r a t o r
Page 174
L I n u x a d m i n i s t r a t o r
Page 175
L I n u x a d m i n i s t r a t o r
Page 176
L I n u x a d m i n i s t r a t o r
Page 177
L I n u x a d m i n i s t r a t o r
Page 178
L I n u x a d m i n i s t r a t o r
Page 179
L I n u x a d m i n i s t r a t o r
Page 180
L I n u x a d m i n i s t r a t o r
Page 181
L I n u x a d m i n i s t r a t o r
Page 182
L I n u x a d m i n i s t r a t o r
Page 183
L I n u x a d m i n i s t r a t o r
Page 184
22.13.2 Access to 'http://(your server's name or IP address/)/webmail/', then follwing sacreen is shown, then authenticate your user name and password to login
type username: Password:
L I n u x a d m i n i s t r a t o r
Page 185
to logon.
22.14 Web Mail-Round Cube Install RoundCube to build web-based mail transfer system like yahoo mail or hotmail. SMTP/IMAP server is needed to run in your LAN. And also MySQL Server is required. (or SQLite, PostgreSQL) This example uses servers below for configuration of RoundCube.
www03.server.world - RoundCube server
mail03.server.world - SMTP/IMAP server
22.14.1 Install RoundCube
L I n u x a d m i n i s t r a t o r
Page 186
22.14.2 Access to 'http://(your server's name or IP address/)/roundcube/', then follwing
sacreen is shown, then authenticate your user name and password to login.
type username & Password to logon.
L I n u x a d m i n i s t r a t o r
Page 187
Chapter 23 MySQL
23.1 Install MySQL for Database Server
L I n u x a d m i n i s t r a t o r
Page 188
23.1.1 Operate from web browser – phpmyadmin
23.1.1.1 Install phpmyadmin
23.1.1.2 Access to 'http://(your hostname or IP address)/(alias name you set)/' with web
browser, then following screen is shown. Login with a user in MySQL.
type root & password to logon.
23.1.1.3 Just logined. You can operate MySQL on here.
L I n u x a d m i n i s t r a t o r
Page 189
Chapter 24 FTP Server 24.1 Install and Configuration
ធររើសំរាបអ់នញុ្ហា រធិអាយធយើងUplaod នងិDownload File ធៅកនុង Linux ធដើមបីធររើវាបានធយើងររូវInstall Packaged មួយដដលមានធ ម្ ោះថាvsftpd….fc10.i386.rpm
ប ទ បពី់Install រួចធ ើយគធឺយើងររូវធៅConfigure File មួយដដលមានធ ម្ ោះថា/etc/vsftpd/vsftpd.conf ធៅកនុងFile ធនោះវាដចកធចញជាប ទ រ់ដដលប ទ រន់មួីយៗគជឺាKey word មួយរពមទងំរនំលដដលKeyword ធ ោះនងិេេលួដដលរវាងKeyword នងិរនំលររូវមានសញ្ហា ធសមើ (=)
# Vi /etc/vsftpd/vsftpd.conf
Key word
# ananymous_enable=YES អនញុ្ហា រ េធិអាយ User Account Anony mous Connectមកកាន ់ftp serverធៅធពលដដលUser Account អាចធររើUser Anonymous គឺFtp server មិនទមទធអាយPassword ធេ៕
Note: ធបើanonymous – enable =No មាននយ័ថាមិនអនញុ្ហា រ េធិអាយ User Anonym oust log ចលូ serverធេ។
# anon-upload-enable= YES : មាននយ័ថាធអាយUser Account
Anony movst មានសិេ ធUិpload ។លោុះរតាដរKey word។
Write-enable = YES ដដលធេើបមានររសិេ ធភាព។
ធបើវាធសមើ=Noធ ោះវាគ្នម នសិេ ធ ិUpload ធេ។
L I n u x a d m i n i s t r a t o r
Page 190
# anon- mkdir-write-enable =YES :មាននយ័ថាអនញុ្ហា រ េធិអាយAnonymousមានសិេ ធបិធងក ើរ Directoryធលើ server ftp។
ធបើវា=No ធ ោះមាននយ័ថា User Anony moustមិនអាចបធងក ើរ Directoryធលើftp serverធេ។
# dirmessage-enable =YES:មាននយ័ថាធពលរេូរចោុះធ ើងនវូ Active directory ធ ោះវាជារបស់Messageរាប ់។
#local_enable=YES:អនញុ្ហា រធិអាយLocal Logon ធររើ FTP Server បាន
#write_enable=YES 24.1.1 Configure FTP Server-Vsftpd
Install Vsftpd to configure FTP server to transfer files.
24.1.1.1 Install Vsftpd
L I n u x a d m i n i s t r a t o r
Page 191
L I n u x a d m i n i s t r a t o r
Page 192
24.2.1 Configure FTP Server-ProFTPD
24.2.1.1 Install ProFTPD
24.3.1 Configure FTP Server-ProFTPD
Install ProFTPD to configure FTP server to transfer files.
24.3.1.1 Install ProFTPD
L I n u x a d m i n i s t r a t o r
Page 193
24.2 FTP Client
Transfer files to yuour FTP server from your PC with cuteFTP
24.2.1 Install FileZilla to your PC and run it, then following screen is shown. Input
your FTP's Hostname, user-name. password, connection-port, like follows. Next Click 'Connect'
L I n u x a d m i n i s t r a t o r
Page 194
24.3 Vsftpd Over SSL/TLS
Enable SSL/TLS on Vsftpd.
24.3.1 Config for SSL/TLS
24.4 Configure on client PC. Use FileZilla that has a function of connecting trough SSL/TLS.
Open 'File'-'Site Manager' and input login info, and select 'TLS/SSL' in 'Server Type'
24.5 Following waring is shown because certificate is originally created, but it's no
ploblem. Go next
L I n u x a d m i n i s t r a t o r
Page 195
24.6 ProFTPD Over SSL/TLS
24.6.1 Config for SSL/TLS
24.6.2 Configure on client PC. Use FileZilla that has a function of connecting trough SSL/TLS. Open 'File'-'Site Manager' and input login info, and select 'TLS/SSL' in 'Server Type'
24.6.3 Following waring is shown because certificate is originally created, but it's no ploblem. Go next
L I n u x a d m i n i s t r a t o r
Page 196
Chapter 25 Mail Server 25.1 Install and Configure Postfix
Install Postfix to configure SMTP Server. This example shows to configure SMTP-Auth to use
Dovecot's SASL function.
25.2 Install and Configure Postfix
L I n u x a d m i n i s t r a t o r
Page 197
25.3 Install and Configure Dovecot
Install Dovecot to Configure POP/IMAP Server. This example shows to configure to provide SASL
function to Postfix.
L I n u x a d m i n i s t r a t o r
Page 198
25.3.1 Configure Client
25.3.1.1 Start With microsoft outlook.
L I n u x a d m i n i s t r a t o r
Page 199
25.4 Configure SSL
Configure SSL settings in order to encrypt datas in connection.
25.4.1 Create certificates first, see here
Create a your server's original SSL Certificate. If you use your server as a business, it had better buy and use a Formal
Certificate from Verisigh and so on.
25.5 Configure Postfix and Dovecot for SSL
L I n u x a d m i n i s t r a t o r
Page 200
Configure on client. Change settings like following example. (if you use PO3S, input '995 for incoming mail)
Click syncronize on Windows Live Mail, then following warning is shown because certificate file is created on your server. It's no ploblem. Click 'Yes' to Proceed, then it's possible to send/receive emails trough SSL connection.
L I n u x a d m i n i s t r a t o r
Page 201
25.6 Virtual Domains Configure for Virtulal Domain to send an email with another domain name different from original domain. This example set config as, present domain name ⇒ server.world
new domain name ⇒ virtual.host
and userA has an email address [email protected] now and Add userB newly and Give him an email address [email protected]
25.6.1Config for Virtual Domain
25.7 Configure on client for new account and make sure to be able to send
emails(microsoft outlook)
now you can try yourself to configure email account.
25.8 Run with Clamav-ClamSMTP
25.8.1 Install Clam AntiVirus to protect from virus
25.8.2 Install Clam AntiVirus
25.8.3 Try to scan
L I n u x a d m i n i s t r a t o r
Page 202
25.8.4 Install Clamav first and Configure to run Postfix with Clamav to scan
virus timely. Install ClamSMTP to do it
L I n u x a d m i n i s t r a t o r
Page 203
These lines below are added in header section of emails after this configuration
Try to send test virus with email, then it will not send to a mailbox and logs like below are recorded.
L I n u x a d m i n i s t r a t o r
Page 204
25.9 Mail Log Analyzer-plogsumm
25.9.1Install pflogsumm that is Postfix mail log analyzer.
L I n u x a d m i n i s t r a t o r
Page 205
L I n u x a d m i n i s t r a t o r
Page 206
25.10 Mail Log Analzer-MailGraph Install maillog analyzer MailGraph. Web Server is also necessarry to be installed .
25.10.1 Install MailGraph
L I n u x a d m i n i s t r a t o r
Page 207
25.10.2 Access to 'http://(your server's name or IP address)/mailgraph/' with
web browser. Then following screen is shown and it's possible to make sure mail log summary
L I n u x a d m i n i s t r a t o r
Page 208
L I n u x a d m i n i s t r a t o r
Page 209
L I n u x a d m i n i s t r a t o r
Page 210
25.11 Mail Log Analzer-Awstats Install maillog analyzer AWstats. Web Server is also needed. Web Server is also necessarry to be
installed.
25.11.1 Install AWstats
L I n u x a d m i n i s t r a t o r
Page 211
L I n u x a d m i n i s t r a t o r
Page 212
L I n u x a d m i n i s t r a t o r
Page 213
25.11.2 Access to 'http://(your server's name or IP address)/report/' with web
browser. Then following screen is shown and it's possible to make sure mail log summary
L I n u x a d m i n i s t r a t o r
Page 214
L I n u x a d m i n i s t r a t o r
Page 215
L I n u x a d m i n i s t r a t o r
Page 216
Chapter 26 Samba Server Samba គជឺា serverមួយដដលធររើសំរាបធ់្វើការរ Shair resource វាង Osដន៏េ (os Microsoft) ។ធ ើយវាកអ៏ាចShair resovrec រវាង Linux ដូចគ្នន ដដរ។ធដើមបីអាចធររើ Service ធនោះបានធយើងររូវInstall មួយដដលមានធ ម្ ោះថា Samba….fcs.ib86.rpm.
ប ទ បពី់Installធ ើយធយើងររូវ Configre fileមួយដដលមានធ ម្ ោះថាSmb.conf ធៅកនុងេតីាងំ#/etc/sambo/smbr conf/
ធៅកនុងFile ធនោះវាដចកធចញជាBloke គbឺloke នមួីយៗររូវសរធសរធៅកនុង[ ] ធ ើយខ្ធរកាមជាParameter (Paramat = គរឺនំលដររររួលអាចដកដររររួលបាន)។
Bloke ទងំអស់រួមមាន -[globle ] :សំរាបក់ ំរប់ា៉ារា៉ា ដរមររួមសំរាបធ់ៅធអាយដផនកដន៏េ -[ Printers]: សំរាបS់hair priter -[ homes]:ធររើសំរាបក់ ំរh់ome user log on -[ net log on]: សំរាបផ់ទុកធៅធដាយScript -[ Profle]:សំរាបផ់ទុកក ំរP់arametដដលទកេ់ង t profile user Account។
Sambo….fcio i386 tpm សំរាប់serverមនុធពលវាទមទSamba-Common….fclo.rpm
Samba-clienf:គធឺដើមបីConneet ជាមួយClientSystem-config-samba:សំរាបC់onfigure ធលើGrapic Desk Topបា៉ារា៉ា ដរមរធៅកនុងដផនកGloble
-Secority = ជាDefualtវាធសមើ userធពលធ ោះSambo server អាចកាលយធៅជាPDC (Primany Controler) រជឺាwork station ធបើសិនវាធសមើDomainធពលធៅវានងិកាល យជាសមាជិកននPDC
26.1 Create a Fully accessed directory
Install Samba and Create a shared directory that anybody can read and write, and
L I n u x a d m i n i s t r a t o r
Page 217
authentication is not needed. 26.1.1Install Samba
26.1.2 Configure on Windows client. This example is on Windows 7. Select
[My Computer] - [Map Network Drive] like following example. 26.1.3 Specify shared folder's place in Folder section like example and Click
'Finish' button to enter.
26.1.4 Done to access to shared folder.
26.2 Create a limited directory
Create a shared directory that requires user authentication. 26.2.1 Configure Samba
L I n u x a d m i n i s t r a t o r
Page 218
26.2.2 Configure on Windows client. This example is on Windows 7. Select
[My Computer] - [Map Network Drive] like following example. 26.2.3 Input '\\(server)\(shared directory)’ 26.2.4 Password is required. Input the one set in [1].
26.3 Install Swat
Install SWAT to configure Samba from Web browser.
26.3.1Install xinetd first because it's needed
L I n u x a d m i n i s t r a t o r
Page 219
26.3.2 Access to [http://(server's hostname or IP address):901]. After
accessing, user name and password is required to login. Input for root's one in it and login, then
following screen is shown and you can configure samba on browser
L I n u x a d m i n i s t r a t o r
Page 220
Chapter 27 Proxy Server
27.1 Install Squid
Configure Proxy server and make web browzing fast. Install Squid for it.
27.1.1 Install and configure Squid
27.1.2 Start Web browser on your client PC. This is the example on Internet
Explorer 8. Select [Tools] - [Internet Options] and move to [Connections] tab like below
L I n u x a d m i n i s t r a t o r
Page 221
27.1.3 Check 'use a proxy' and input server's hostname and port number set
in the section [1]. Then, you can access to internet through proxy server
L I n u x a d m i n i s t r a t o r
Page 222
27.2 Run with clamav-Squid Clamav
Install SquidClamav and Configure Proxy Server in order to scan download files to protect
from virus. Install clamav first.
27.2.1 Install Clamav-server first
L I n u x a d m i n i s t r a t o r
Page 223
L I n u x a d m i n i s t r a t o r
Page 224
27.2.2 Install SquidClamav
L I n u x a d m i n i s t r a t o r
Page 225
27.2.3 Configure Squid
27.2.4 Try to access to a page that has trial virus from here http://www.eicar.org/anti_virus_test_file.htm Click 'eicar.com' and rty to download it. Then, the error page that is set in the config of squidclamav. Virus is blocked normally.
27.1.2 Run with SquidGuard
Run Squid with SquidGuard that is a URL redirector. Configure squidClamav first .
27.3.1 Install and configure SquidGuard (this config is most simply example)
L I n u x a d m i n i s t r a t o r
Page 226
L I n u x a d m i n i s t r a t o r
Page 227
27.3.2 Try to access to Yahoo set as prohibited domain in [1]. Prohibited
domain is blicked normally
27.4 Configure as a reverse proxy Configure Squid as a reverse proxy server. It is useful for improving server's performance or security. 27.4.1 Configure Squid
27.4.2 Change Settings of DNS or router if needed, and access to verify
settings
L I n u x a d m i n i s t r a t o r
Page 228
L I n u x a d m i n i s t r a t o r
Page 229
Chapter 28 V N C S e r v e r
28.1 Install and Configure
28.1.1 Install VNC Server to operate Fedora with GUI remotely from Windows
client
28.1.2 Install VNC viewer on client computer next. Download from the site
below to install http://www.realvnc.com/products/free/4.1/download.html
Start VNC viewer after installing. Then following scrren is shown. Input [(Server's
hostname or IP address):(display number)] like following example.
28.1.3 Password is required. Input VNC password you set in the section
[28.1.1]
L I n u x a d m i n i s t r a t o r
Page 230
28.1.4 Just Connected